whoAMI

  • Blog
    digitpatrox7 days ago
    21

    whoAMI attacks give hackers code execution on Amazon EC2 instances

    Security researchers discovered a name confusion attack that allows access to an Amazon Web Services account to anyone that publishes an Amazon Machine Image (AMI) with a specific name. Dubbed “whoAMI,” the attack was crafted by DataDog researchers in August 2024, who demonstrated that it’s possible for attackers to gain code execution within AWS accounts by exploiting how software projects retrieve…

    Read More »
Back to top button
close