all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Amazon addresses vulnerability affecting AWS AppSync

Add to bookmarks
Nov. 21, 2022, 9:51 p.m. | Jonathan Greig

The Record by Recorded Future therecord.media

Researchers from security company Datadog discovered a cross-tenant vulnerability in a popular Amazon Web Services (AWS) tool, which Amazon has now addressed. The bug allows attackers to abuse AWS’ AppSync service and assume Identity and Access Management (IAM) roles in other AWS accounts. This gives an attacker the opportunity “to pivot into a victim organization […]


The post Amazon addresses vulnerability affecting AWS AppSync appeared first on The Record by Recorded Future.

amazon amazon web services appsync aws briefs technology vulnerability

Visit resource

More from therecord.media / The Record by Recorded Future

DHS asked to consider potentially 'devastating’ impact of hacks on rural water systems an hour ago | therecord.media
dhs government hacks impact +7
Feds accuse founders of cryptocurrency mixer of ‘large-scale money laundering’ 17 hours ago | therecord.media
cryptocurrency cryptocurrency mixer cybercrime founders +7
CISA: Cisco and CrushFTP vulnerabilities need urgent patches 20 hours ago | therecord.media
cisa cisco crushftp industry +4
Plasma donation company Octapharma slowly reopening as BlackSuit gang claims attack 21 hours ago | therecord.media
attack blacksuit claims cybercrime +2
France seeks new EU sanctions to target Russian disinformation 21 hours ago | therecord.media
disinformation elections france government +4
Anti-Trump PAC Lincoln Project scammed for $35,000 after vendor email hack 23 hours ago | therecord.media
cybercrime elections email hack +6
Bank fraud ‘call center’ gang busted in Ukraine, police say 1 day ago | therecord.media
bank bank fraud busted call +6
Hackers publish fake story about Ukrainians attempting to assassinate Slovak president 1 day, 2 hours ago | therecord.media
cybercrime fake government hackers +3
Sweden's liquor shelves to run empty this week due to ransomware attack 1 day, 3 hours ago | therecord.media
attack cybercrime industry news briefs +5

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Cloud Technical Solutions Engineer, Security

@ Google | Mexico City, CDMX, Mexico
View on infosec-jobs.com

Assoc Eng Equipment Engineering

@ GlobalFoundries | SGP - Woodlands
View on infosec-jobs.com

Staff Security Engineer, Cloud Infrastructure

@ Flexport | Bellevue, WA; San Francisco, CA
View on infosec-jobs.com

Software Engineer III, Google Cloud Security and Privacy

@ Google | Sunnyvale, CA, USA
View on infosec-jobs.com

Software Engineering Manager II, Infrastructure, Google Cloud Security and Privacy

@ Google | San Francisco, CA, USA; Sunnyvale, CA, USA
View on infosec-jobs.com
View more jobs