Techly NewsGet the app

Get the latest tech news

110K Domains Targeted in 'Sophisticated' AWS Cloud Extortion Campaign


A sophisticated extortion campaign has targeted 110,000 domains by exploiting misconfigured AWS environment files, security firm Cyble reports. The attackers scanned for exposed .env files containing cloud access keys and other sensitive data. Organizations that failed to secure their AWS environmen...

A sophisticated extortion campaign has targeted 110,000 domains by exploiting misconfigured AWS environment files, security firm Cyble reports. Organizations that failed to secure their AWS environments found their S3-stored data replaced with ransom notes. The attackers used a series of API calls to verify data, enumerate IAM users, and locate S3 buckets.

Get the Android app

Or read this on Slashdot

Read more on:

Photo of domains

domains

Related news:

News photo

Sitting Ducks DNS attacks let hackers hijack over 35,000 domains

News photo

Cybercrooks spell trouble with typosquatting domains amid CrowdStrike crisis

News photo

Z-Library: More Domains Seized Than Any Other Pirate Site in History

« Bezos’ Blue Origin Suffers Fiery Setback Building New Rocket
Bum Farto »