AWS has introduced EC2 instance attestation, a new security feature that enables customers to verify that their virtual machines are running approved software configurations in a cryptographically ...
Security researchers discovered a name confusion attack that allows access to an Amazon Web Services account to anyone that publishes an Amazon Machine Image (AMI) with a specific name. Dubbed "whoAMI ...
‘We uncovered exploitation in the wild of a previously unknown zero-day vulnerability in a popular web service stemming from insecure use of Pandoc,’ said Wiz researchers in a new report.
Although the EC2 console doesn't make it super obvious, you can assign multiple security groups to an individual VM instance. As such, some organizations like to create extremely granular security ...
Amazon CISO CJ Moses explains how Amazon’s honeypot system Madpot and Amazon Web Services’ active defense tool Sonaris are stopping trillions of cyberattacks on Amazon EC2 and S3 storage buckets.