all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Partial CloudTrail logging in AWS Control Tower

Add to bookmarks
March 20, 2023, midnight |

The Open Cloud Vulnerability & Security Issue Database www.cloudvulndb.org

AWS Control Tower was not properly logging to CloudTrail when API calls
failed due to a lack of permissions. This could have helped an adversary
with existing access to a victim AWS environment avoid detection while
enumerating privileges, since any unsuccessful API calls would not
generate "access denied" log entries.

access access denied adversary api aws cloudtrail control detection environment log logging logging in partial permissions privileges victim

Visit resource

More from www.cloudvulndb.org / The Open Cloud Vulnerability & Security Issue Database

Internal Azure Container Registry writable via exposed secret 2 weeks, 3 days ago | www.cloudvulndb.org
access apollo azure azure container registry +19
Lethal Injection 3 weeks, 5 days ago | www.cloudvulndb.org
access amp attackers auth +24
GraphNinja 1 month ago | www.cloudvulndb.org
attackers attacks authentication credentials +14
AWS Amplify IAM role publicly assumable exposure 1 month, 2 weeks ago | www.cloudvulndb.org
account amplify aws cli +12
AWS Glue database password leakage 1 month, 3 weeks ago | www.cloudvulndb.org
access aws aws glue can +11
FlowFixation 2 months, 1 week ago | www.cloudvulndb.org
airflow amazon apache attack +25
Synapse Analytics privilege escalation via intelligent caching 2 months, 3 weeks ago | www.cloudvulndb.org
analytics caching context environment +16
Azure Site Recovery privilege escalation 3 months, 2 weeks ago | www.cloudvulndb.org
access access token account asr +19
Azure HDInsight privilege escalation and DoS vulnerabilities 3 months, 3 weeks ago | www.cloudvulndb.org
apache attacker azure dos +9

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Security Compliance Strategist

@ Grab | Petaling Jaya, Malaysia
View on infosec-jobs.com

Cloud Security Architect, Lead

@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)
View on infosec-jobs.com