{ads}

New “whoAMI” Attack Exploits AWS AMI Name Confusion for Remote Code Execution

Written By Friday, 14 February 2025 Add Comment



February 15, 2025 at 12:12AM

Cybersecurity researchers have disclosed a new type of name confusion attack called whoAMI that allows anyone who publishes an Amazon Machine Image (AMI) with a specific name to gain code execution within the Amazon Web Services (AWS) account. "If executed at scale, this attack could be used to gain access to thousands of accounts," Datadog Security Labs researcher Seth Art said in a report

from The Hacker News https://ift.tt/6TGlmgX

0 Response to "New “whoAMI” Attack Exploits AWS AMI Name Confusion for Remote Code Execution"

Post a Comment

Subscribe to: Post Comments (Atom)

Article Top Ads

Central Ads Article 1

Middle Ads Article 2

Article Bottom Ads