InfoSecBulletin Cybersecurity for mankind
DataDog Security Labs found a worrying campaign targeting Amazon Web Services (AWS), showing a new wave of harmful activity aimed at compromising important cloud resources. The attackers are using various methods, focusing on finding and possibly stealing data from AWS Secrets Manager, S3 buckets, and S3 Glacier vaults.
Between May 23rd and 27th, 2024, a campaign showed how cyber threats to cloud infrastructure continue to evolve. The attackers likely to use leaked access keys, residential proxies, and the Cloudflare WARP VPN to hide their actions, showing their sophistication and determination.
Hacker claim to breach Link3; 189,000 Users data up for sale
Check Point Hosts “Securing the Hyperconnected World in the AI Era” in Dhaka
Microsoft Confirms 900+ XSS Vulns Found in IT Services
Daily Security Update Dated : 15.09.2025
IBM QRadar SIEM Vuln Let Attackers Perform Unauthorized Actions
Major Australian Banks using Army of AI Bots to Scam Scammers
F5 to acquire CalypsoAI for $180M for Advanced AI Security Capabilities
AI Pentesting Tool ‘Villager’ Merges Kali Linux with DeepSeek AI for Automated Attacks
CVE-2025-21043
Samsung Patched Critical Zero-Day Flaw Exploited in Android Attacks
Albania appoints world’s first AI minister, “Diella” to Tackle Corruption
DataDog’s research did not find any successful attempts to steal data. However, the fact that many AWS resources were being identified suggests that there might be a deliberate and potentially large-scale operation happening.
While DataDog’s research did not observe successful data exfiltration attempts, the widespread enumeration of AWS resources suggests a calculated and potentially large-scale operation. The attackers may be assessing the value of available data before initiating exfiltration or testing the level of access they possess for potential resale in underground markets.
Attackers are now targeting S3 Glacier vaults, a shift from the traditional focus on S3 buckets. This shows that attackers are broadening their tactics to explore new ways to exploit potential vulnerabilities.
DataDog’s report provides important information about the tactics, techniques, and procedures used in this campaign. It gives organizations valuable insights to improve their AWS security. By monitoring the indicators of compromise and implementing proactive security measures, organizations can reduce the risk of being attacked.
