Threat Post

AWS Cryptojacking Worm Spreads Through the Cloud

The malware harvests AWS credentials and installs Monero cryptominers. A cryptomining worm from the group known as TeamTNT is spreading through the Amazon Web Services (AWS) cloud and collecting ...
ZDNet

Crypto-mining worm steals AWS credentials

Security researchers have discovered what appears to be the first crypto-mining malware operation that contains functionality to steal AWS credentials from infected servers. This new data-stealing ...
Bleeping Computer

Cryptojacking worm steals AWS credentials from Docker systems

A cybercrime group known as TeamTNT is using a crypto-mining worm to steal plaintext AWS credentials and config files from compromised Docker and Kubernetes systems. TeamTNT's cryptocurrency mining ...
CSOonline

LLMjacking: How attackers use stolen AWS credentials to enable LLMs and rack up costs for victims

Users of AI cloud services such as Amazon Bedrock are increasingly being targeted by attackers who abuse stolen credentials in a new attack dubbed LLMjacking. The black market for access to large ...
Dark Reading

Russia's APT29 Mimics AWS Domains to Steal Windows Credentials

Russia's premiere advanced persistent threat group has been phishing thousands of targets in militaries, public authorities, and enterprises. "APT29 embodies the 'persistent' part of 'advanced ...
Dark Reading

CISA: AWS, Microsoft 365 Accounts Under Active 'Androxgh0st' Attack

The FBI and the US Cybersecurity and Infrastructure Security Agency (CISA) have issued an alert about a malware campaign targeting Apache webservers and websites using the popular Laravel Web ...
TechSpot

10,000 AWS secret access keys carelessly left in code uploaded to GitHub

Serving tech enthusiasts for over 25 years. TechSpot means tech analysis and advice you can trust. Amazon Web Services (AWS) is asking those that write code and use GitHub to go back and check their ...