Cybercriminal gangs have hacked public websites to extract data including Amazon Web Services (AWS) cloud credentials from organisations. Cybersecurity researchers Noam Rotem and Ran Locar of CyberCyber Labs found the data in an AWS storage bucket left open due to a misconfiguration, stored by an attacker. The cyberattacks have been connected to threat groups Nemesis and ShinyHunters, known for a hack on Ticketmaster earlier in 2021. AWS responded to insider reports of the operation by urging users to store credentials safely.

Mandiant warns of attacks on newly-disclosed Ivanti remote takeover threat
Google’s Mandiant team has issued an alert about a remote code execution flaw in the Ivanti Connect Secure VPN platform. The vulnerability, designated CVE-2025-22457, is