all InfoSec news
AWS’s Hidden Threat: AMBERSQUID Cloud-Native Cryptojacking Operation
Malware Analysis, News and Indicators - Latest topics malware.news
The Sysdig Threat Research Team (TRT) has uncovered a novel cloud-native cryptojacking operation which they’ve named AMBERSQUID. This operation leverages AWS services not commonly used by attackers, such as AWS Amplify, AWS Fargate, and Amazon SageMaker. The uncommon nature of these services means that they are often overlooked from a security perspective, and the AMBERSQUID operation can cost victims more than $10,000/day.
The AMBERSQUID operation was able to exploit cloud services without triggering the AWS requirement for approval of more …
amazon amplify attackers aws aws fargate cloud cloud-native cryptojacking fargate hidden nature novel perspective research sagemaker security services sysdig team threat threat research uncommon uncovered