AlienFox Malware Targets API Keys and Secrets from AWS, Google, and Microsoft Cloud Services

A new "comprehensive toolset" called AlienFox is being distributed on Telegram as a way for threat actors to harvest credentials from API keys and secrets from popular cloud service providers.
"The spread of AlienFox represents an unreported trend towards attacking more minimal cloud services, unsuitable for crypto mining, in order to enable and expand subsequent campaigns," SentinelOne security

alienfox api api keys aws called campaigns cloud cloud service cloud service providers cloud services credentials crypto crypto mining distributed enable google keys malware microsoft microsoft cloud mining order popular secrets security sentinelone service service providers services telegram threat threat actors trend