TheServerSide

How to configure multiple AWS CLI authentication credentials

AWS power users often possess multiple IAM accounts with which they execute terminal commands and CLI operations. For example, an AWS developer might rely on separate accounts to manage Kubernetes ...
CSOonline

ECScape: New AWS ECS flaw lets containers hijack IAM roles without breaking out

Naor Haziz’s discovery shows how a compromised container on EC2-backed ECS tasks can impersonate the ECS agent and steal IAM credentials from other tasks—without host access. At Black Hat USA 2025, ...
TechRadar

AWS customers hit by major cyberattack which then stored stolen credentials in plain sight

Researchers discover campaign to scan for exposed data from "millions of websites" The crooks were selling the data on the dark web for "hundreds of euros" AWS says it has now fixed the issue, but ...
Bleeping Computer

Hackers target SSRF bugs in EC2-hosted sites to steal AWS credentials

A targeted campaign exploited Server-Side Request Forgery (SSRF) vulnerabilities in websites hosted on AWS EC2 instances to extract EC2 Metadata, which could include Identity and Access Management ...