Hacking News Alert: Threat Actors Can Leverage AWS STS to Infiltrate Cloud Accounts

Hacking News Alert: Threat Actors Can Leverage AWS STS to Infiltrate Cloud Accounts - Printable Version

+- (https://hackmyride.com/forum)
+-- Forum: Automotive Hacking (https://hackmyride.com/forum/forumdisplay.php?fid=211)
+--- Forum: News (https://hackmyride.com/forum/forumdisplay.php?fid=278)
+---- Forum: The Hacker News (https://hackmyride.com/forum/forumdisplay.php?fid=279)
+---- Thread: Hacking News Alert: Threat Actors Can Leverage AWS STS to Infiltrate Cloud Accounts (/showthread.php?tid=11474)

Alert: Threat Actors Can Leverage AWS STS to Infiltrate Cloud Accounts - The Hacker News - 12-06-2023

Alert: Threat Actors Can Leverage AWS STS to Infiltrate Cloud Accounts

Threat actors can take advantage of Amazon Web Services Security Token Service (AWS STS) as a way to infiltrate cloud accounts and conduct follow-on attacks.
The service enables threat actors to impersonate user identities and roles in cloud environments, Red Canary researchers Thomas Gardner and Cody Betsworth said in a Tuesday analysis.
AWS STS is a web service that enables

https://thehackernews.com/2023/12/alert-threat-actors-can-leverage-aws.html