Rhino Security Labs identified two username enumeration vulnerabilities in the AWS Web Console affecting IAM users. One, CVE-2025-0693, was patched by AWS, while the other is accepted as a risk. The vulnerabilities allow attackers to confirm valid usernames via different error messages for MFA users and timing differences for non-MFA users. Organizations are urged to enable MFA and monitor CloudTrail logs for unusual activity.
Trojanized Microsoft activators leveraged in new Sandworm attacks
Russian state-sponsored group Sandworm has been launching malware attacks on Ukrainian Windows users, involving bogus updates and Microsoft Key Management Service activators. As part of
