Ars Technica

Here’s how carefully concealed backdoor in fake AWS files escaped mainstream notice

Researchers have determined that two fake AWS packages downloaded hundreds of times from the open source NPM JavaScript repository contained carefully concealed code that backdoored developers' ...
CSOonline

Abandoned AWS S3 buckets open door to remote code execution, supply-chain compromises

Attackers re-register abandoned AWS S3 buckets filled with malicious files that are executed by applications looking for these buckets. Code references to nonexistent cloud assets continue to pose ...
InfoQ

AWS Announces Open Source Mountpoint for Amazon S3

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Ludovic Henry explains how RISC-V's open ...
SiliconANGLE

AWS open-sources snapshot fuzzing and policy authorization tools

Amazon Web Services Inc. said today that it’s open-sourcing two new projects, including a new fuzzing tool for finding vulnerabilities in software and an authorization policy language for controlling ...