The Hacker News

Compromised IAM Credentials Power a Large AWS Crypto Mining Campaign

Amazon reports a new AWS crypto mining campaign abusing IAM credentials, ECS, EC2, and termination protection for persistence ...
Cybernews

Cursor vulnerable to “catastrophic budget drain:” vibe coder finds a way to spend $1 million

Cursor and AWS Bedrock integrations have a critical flaw, which a vibe coder found, allowing him to spend $1 million from the ...
CRN

Hackers Target AWS IMDS And EC2 To Steal Credentials: Wiz Report

‘We uncovered exploitation in the wild of a previously unknown zero-day vulnerability in a popular web service stemming from insecure use of Pandoc,’ said Wiz researchers in a new report.