whoAMI attacks give hackers code execution on Amazon EC2 instances
Security researchers discovered a name confusion attack that allows access to an Amazon Web Services account to anyone that publishes an Amazon Machine Image (AMI) with a specific name.
CSO Online13h
whoAMI name confusion attacks can hack into AWS accounts for code execution
Due to a misconfiguration, developers could be tricked into retrieving malicious Amazon Machine Images (AMI) while creating ...
Amazon wants to rent you a 32-core virtual workstation in the cloud for $4.40 per hour and yes, you'd still need to have a thin client to access it
The company says these new instances will provide its customers with powerful cloud desktops for resource-intensive Windows workloads. The new instance types, GeneralPurpose.4xlarge and GeneralPurpose ...
CRN2y
AWS’ New EC2 Instances On Apple’s M1 Mac: 5 Key Features
“I have the pleasure of announcing the general availability of EC2 M1 Mac instances.” First announced at AWS re:Invent 2021, the Amazon EC2 M1 Mac—known as the Mac2—aims to enable ...
The Hacker News6h
New "whoAMI" Attack Exploits AWS AMI Name Confusion for Remote Code Execution
Cybersecurity researchers have disclosed a new type of name confusion attack called whoAMI that allows anyone who publishes an Amazon Machine Image ( AMI) with a specific name to gain code execution ...