Cybercriminal gangs have hacked public websites to extract data including Amazon Web Services (AWS) cloud credentials from organisations. Cybersecurity researchers Noam Rotem and Ran Locar of CyberCyber Labs found the data in an AWS storage bucket left open due to a misconfiguration, stored by an attacker. The cyberattacks have been connected to threat groups Nemesis and ShinyHunters, known for a hack on Ticketmaster earlier in 2021. AWS responded to insider reports of the operation by urging users to store credentials safely.
Week in review: NIST updates DNS security guidance, compromised LiteLLM PyPI packages
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: NIST updates its DNS security guidance for the first time
