Bleeping Computer27 天
whoAMI attacks give hackers code execution on Amazon EC2 instances
The whoAMI attack is possible due to misconfigured AMI selection in AWS environments: The retrieval of AMIs by software using the ec2:DescribeImages API without specifying an owner The use of ...
CSOonline27 天
whoAMI name confusion attacks can expose AWS accounts to malicious code execution
Users can specify a known AMI ID or search for the latest public AMIs using the ec2.DescribeImgaes API to find region-specific options. If the “owners” attribute is omitted when searching for ...