Attackers re-register abandoned AWS S3 buckets filled with malicious files that are executed by applications looking for these buckets.

Researchers have determined that two fake AWS packages downloaded hundreds of times from the open source NPM JavaScript repository contained carefully concealed code that backdoored developers ...