A flaw named WhoAMI was found in Amazon Machine Image It allows threat actors to gain RCE abilities on people's AWS accounts A fix has been released, but many users are still yet to update Amazon ...
Thousands of active AWS accounts are vulnerable to a cloud image name confusion attack that could allow attackers to execute codes within those accounts. According to DataDog research, vulnerable ...
Dubbed "whoAMI," the attack was crafted by DataDog researchers in August 2024, who demonstrated that it's possible for attackers to gain code execution within AWS accounts by exploiting how ...