all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

CloudKeys in the Air: Tracking Malicious Operations of Exposed IAM Keys

Add to bookmarks
Oct. 30, 2023, 11:40 a.m. | William Gamazo and Nathaniel Quist

Unit42 unit42.paloaltonetworks.com

We analyze an attack path starting with GitHub IAM exposure and leading to creation of AWS Elastic Compute instances — which TAs used to perform cryptojacking.


The post CloudKeys in the Air: Tracking Malicious Operations of Exposed IAM Keys appeared first on Unit 42.

air attack attack path aws cloud compute cortex cryptojacking cybercrime elastic exposed exposed credentials exposure github iam keys malicious operations path prisma cloud tracking unit 42

Visit resource

More from unit42.paloaltonetworks.com / Unit42

Threat Brief: Operation MidnightEclipse, Post-Exploitation Activity Related to CVE-2024-3400 3 weeks ago | unit42.paloaltonetworks.com
campaign command command injection cve +13
Muddled Libra’s Evolution to the Cloud 3 weeks, 3 days ago | unit42.paloaltonetworks.com
amp applications att aws +17
It Was Not Me! Malware-Initiated Vulnerability Scanning Is on the Rise 3 weeks, 3 days ago | unit42.paloaltonetworks.com
advanced threat prevention advanced url filtering advanced wildfire attacks +14
Threat Brief: Vulnerability in XZ Utils Data Compression Library Impacting Multiple Linux Distributions (CVE-2024-3094) 1 month ago | unit42.paloaltonetworks.com
compression cortex xdr cortex xsiam cve +17
Exposing a New BOLA Vulnerability in Grafana 1 month ago | unit42.paloaltonetworks.com
advanced url filtering api api attacks authorization +19
ASEAN Entities in the Spotlight: Chinese APT Group Targeting 1 month, 1 week ago | unit42.paloaltonetworks.com
actions advanced persistent threat advanced url filtering apac +20
Large-Scale StrelaStealer Campaign in Early 2024 1 month, 1 week ago | unit42.paloaltonetworks.com
advanced threat protection advanced wildfire campaign campaigns +16
Curious Serpens’ FalseFont Backdoor: Technical Analysis, Detection and Prevention 1 month, 1 week ago | unit42.paloaltonetworks.com
advanced threat prevention advanced url filtering advanced wildfire aerospace +25
Unit 42 Collaborative Research With Ukraine’s Cyber Agency To Uncover the Smoke Loader Backdoor 1 month, 2 weeks ago | unit42.paloaltonetworks.com
advanced threat prevention advanced url filtering advanced wildfire agency +21

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Financial Crimes Compliance - Senior - Consulting - Location Open

@ EY | New York City, US, 10001-8604
View on infosec-jobs.com

Software Engineer - Cloud Security

@ Neo4j | Malmö
View on infosec-jobs.com

Security Consultant

@ LRQA | Singapore, Singapore, SG, 119963
View on infosec-jobs.com

Identity Governance Consultant

@ Allianz | Sydney, NSW, AU, 2000
View on infosec-jobs.com

Educator, Cybersecurity

@ Brain Station | Toronto
View on infosec-jobs.com

Principal Security Engineer

@ Hippocratic AI | Palo Alto
View on infosec-jobs.com
View more jobs