all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Cloudy With a Chance of Credentials | AWS-Targeting Cred Stealer Expands to Azure, GCP

Add to bookmarks
July 13, 2023, 1:01 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

By Alex Delamotte, with Ian Ahl (Permiso) and Daniel Bohannon (Permiso)


Executive Summary



  • Throughout June 2023, an actor behind a cloud credentials stealing campaign has expanded their tooling to target Azure and Google Cloud Platform (GCP) services. Previously, this actor focused exclusively on Amazon Web Services (AWS) credentials.

  • Cloud service credentials are increasingly targeted as actors find more ways to profit from compromising such services. This actor targeted exposed Docker instances to deploy a worm-like propagation module.

  • These campaigns share …

actor alex amazon amazon web services aws azure campaign cloud cloud platform credentials daniel executive gcp google google cloud google cloud platform ian june june 2023 malware analysis permiso platform services stealer stealing target targeting tooling web web services

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Navigating the cybersecurity career maze an hour ago | malware.news
article career careers cyber +12
The Top 11 Legal Industry Cyber Attacks an hour ago | malware.news
addition attack attacks breach +13
Sophos named a Leader in the 2024 IDC MarketScape for Worldwide Managed Detection and Response … 2 hours ago | malware.news
and response article business capabilities +14
Another Day, Another NAS: Attacks against Zyxel NAS326 devices CVE-2023-4473, CVE-2023-4474, (Tue, Apr 30th) 2 hours ago | malware.news
article attacks cve devices +13
LABScon23 Replay | From Vulkan to Ryazan – Investigative Reporting from the Frontlines of Infosec 2 hours ago | malware.news
called campaigns companies critical +19
Defending infrastructure, securing systems key to CISA's new AI guidelines 2 hours ago | malware.news
article artificial artificial intelligence benefits +14
Announcing the General Availability of Spectra Detect v5.0: Enhancing File Analysis for Advanced Threat Detection 3 hours ago | malware.news
advanced advanced threat advanced threat detection analysis +22
ReversingLabs Hashing Algorithm 3 hours ago | malware.news
algorithm algorithms allowlisting applications +15
How to Stop Phishing Attacks Being Missed 3 hours ago | malware.news
attachments attackers attacks business +18

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Threat Analysis Engineer

@ Gen | IND - Tamil Nadu, Chennai
View on infosec-jobs.com

Head of Security

@ Hippocratic AI | Palo Alto
View on infosec-jobs.com

IT Security Vulnerability Management Specialist (15.10)

@ OCT Consulting, LLC | Washington, District of Columbia, United States
View on infosec-jobs.com

Security Engineer - Netskope/Proofpoint

@ Sainsbury's | Coventry, West Midlands, United Kingdom
View on infosec-jobs.com

Journeyman Cybersecurity Analyst

@ ISYS Technologies | Kirtland AFB, NM, United States
View on infosec-jobs.com
View more jobs