all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Short-term AWS access tokens allow attackers to linger for a longer while

Add to bookmarks
Dec. 7, 2023, 2:18 p.m. | Zeljka Zorz

Help Net Security www.helpnetsecurity.com

Attackers usually gain access to an organization’s cloud assets by leveraging compromised user access tokens obtained via phishing, by using malware, or by finding them in public code repositories. These are long-term access tokens associated with an AWS IAM or federated users (i.e, users who have authenticated via a third-party identity platform). They grant users – whether legitimate or malicious ones – specific roles and privileges. If the permission level is high enough, this compromised … More


The post …

access access management access tokens amazon web services assets attackers authentication aws cloud cloud security code code repositories compromised don't miss federated hot stuff iam malware organization phishing public red canary repositories tokens

Visit resource

More from www.helpnetsecurity.com / Help Net Security

1Password Extended Access Management secures unmanaged applications and devices 6 hours ago | www.helpnetsecurity.com
1password access access management application +18
New SOHO router malware aims for cloud accounts, internal company resources 8 hours ago | www.helpnetsecurity.com
account accounts actor alibaba +38
Trend Micro expands AI-powered cybersecurity platform 8 hours ago | www.helpnetsecurity.com
adoption advancements ai-powered ai tools +16
HITRUST updates Cyber Threat Adaptive engine to address emerging cyber threats 8 hours ago | www.helpnetsecurity.com
accuracy address advanced ai capabilities +27
Secure Code Warrior SCW Trust Score quantifies the security posture of developer teams 8 hours ago | www.helpnetsecurity.com
benchmark code developer effectively +13
Proofpoint DLP Transform secures data moving to ChatGPT, copilots, and other GenAI tools 9 hours ago | www.helpnetsecurity.com
address businesses cases chatgpt +24
Appdome launches MobileEDR, merging MTD and EDR to protect enterprise mobile apps 9 hours ago | www.helpnetsecurity.com
agentless amp app appdome +27
Confluent enhances Apache Flink with new features for easier AI and broader stream processing 9 hours ago | www.helpnetsecurity.com
ai model apache cloud confluent +18
Nord Security unveils NordStellar, a platform for advanced cyber threat detection and response 9 hours ago | www.helpnetsecurity.com
access accounts advanced and response +38

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

DevSecOps Engineer

@ LinQuest | Beavercreek, Ohio, United States
View on infosec-jobs.com

Senior Developer, Vulnerability Collections (Contractor)

@ SecurityScorecard | Remote (Turkey or Latin America)
View on infosec-jobs.com

Cyber Security Intern 03416 NWSOL

@ North Wind Group | RICHLAND, WA
View on infosec-jobs.com

Senior Cybersecurity Process Engineer

@ Peraton | Fort Meade, MD, United States
View on infosec-jobs.com

Sr. Manager, Cybersecurity and Info Security

@ AESC | Smyrna, TN 37167, Smyrna, TN, US | Santa Clara, CA 95054, Santa Clara, CA, US | Florence, SC 29501, Florence, SC, US | Bowling Green, KY 42101, Bowling Green, KY, US
View on infosec-jobs.com
View more jobs