all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

AWS’s Hidden Threat: AMBERSQUID Cloud-Native Cryptojacking Operation

Add to bookmarks
c
Jan. 11, 2024, 5:44 p.m. |

Cloud Security Alliance cloudsecurityalliance.org

Originally published by Sysdig.Written by Alessandro Brucato. The Sysdig Threat Research Team (TRT) has uncovered a novel cloud-native cryptojacking operation which they’ve named AMBERSQUID. This operation leverages AWS services not commonly used by attackers, such as AWS Amplify, AWS Fargate, and Amazon SageMaker. The uncommon nature of these services means that they are often overlooked from a security perspective, and the AMBERSQUID operation can cost victims more than $10,000/day.The AMBE...

amazon amazon sagemaker amplify attackers aws aws fargate cloud cloud-native cryptojacking fargate hidden nature novel research sagemaker services sysdig team threat threat research uncommon uncovered written

Visit resource

More from cloudsecurityalliance.org / Cloud Security Alliance

Cl
The Risk and Impact of Unauthorized Access to Enterprise Environments 1 day, 17 hours ago | cloudsecurityalliance.org
access advanced api api security +28
Cl
Automated Cloud Remediation – Empty Hype, Viable Strategy, or Something in Between? 1 day, 17 hours ago | cloudsecurityalliance.org
amp automated automation cloud +15
Cl
Cloud Security Alliance and SAFECode Release Sixth and Final White Paper in Its Six Pillars … 4 days ago | cloudsecurityalliance.org
alliance best practices certifications clear +19
Cl
Apple's New iMessage, Signal, and Post-Quantum Cryptography 4 days, 2 hours ago | cloudsecurityalliance.org
apple application attack computers +25
Cl
2024 State of SaaS Security Report Shows A Gap Between Security Team Confidence And Complexity … 4 days, 2 hours ago | cloudsecurityalliance.org
applications complexity data enterprise +18
Cl
Navigating Cloud Security Best Practices: A Strategic Guide 1 week, 1 day ago | cloudsecurityalliance.org
best practices blog cloud cloud computing +25
Cl
Building Trust Through Vendor Risk Management 1 week, 1 day ago | cloudsecurityalliance.org
advisory barr advisory building building trust +19
Cl
New SEC Rules: Material Incident Reporting Through Cybersecurity Disclosures 1 week, 2 days ago | cloudsecurityalliance.org
aim companies cybersecurity cybersecurity risks +22
Cl
A Risk-Based Approach to Vulnerability Management 1 week, 3 days ago | cloudsecurityalliance.org
armorcode attacks events impact +13

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada
View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA
View on infosec-jobs.com

Security Operations Manager-West Coast

@ The Walt Disney Company | USA - CA - 2500 Broadway Street
View on infosec-jobs.com

Vulnerability Analyst - Remote (WFH)

@ Cognitive Medical Systems | Phoenix, AZ, US | Oak Ridge, TN, US | Austin, TX, US | Oregon, US | Austin, TX, US
View on infosec-jobs.com

Senior Mainframe Security Administrator

@ Danske Bank | Copenhagen V, Denmark
View on infosec-jobs.com