The Hacker News

Compromised IAM Credentials Power a Large AWS Crypto Mining Campaign

Amazon reports a new AWS crypto mining campaign abusing IAM credentials, ECS, EC2, and termination protection for persistence ...
The Hacker News

React2Shell Vulnerability Actively Exploited to Deploy Linux Backdoors

React2Shell vulnerability CVE-2025-55182 is actively exploited to deploy Linux malware, run commands, and steal cloud ...
GovInfoSecurity

Russia's GRU Tied to Critical Infrastructure Cloud Breaches

Misconfigured edge devices hosted in the cloud are giving nation-state hackers carte blanche to access Western critical ...
TMCnet

RegScale Donates Open-Source OSCAL Hub to the OSCAL Foundation to Accelerate the Automation of Security Compliance Across Public and Private Sectors

RegScale also announced today that it is donating the OSCAL Hub source code as both free and open source to the OSCAL Foundation to advance the use of the application in the community, across both ...
InfoQ

AWS Transform Custom Tackles Technical Debt

AWS Transform Custom revolutionizes code modernization with AI-driven, out-of-the-box transformations for Java, Node.js, and ...

Amazon disrupts Russian GRU hackers attacking edge network devices

The Amazon Threat Intelligence team has disrupted active operations attributed to hackers working for the Russian foreign ...
CSO Online

Russian APT group pivots to network edge device misconfigurations

According to Amazon’s telemetry, the group’s infrastructure has overlaps with Sandworm, a group also known as APT44 and ...