A “largest-ever DDoS attack” was launched using a zero-day bug, affecting services like Amazon Web Services, Cloudflare, and Google Cloud. 23andMe was forced to reset user passwords after genetic data was posted online. Curl, the open-source tool, experienced significant vulnerabilities. Meanwhile, Progress Software disclosed that the US SEC is investigating the vulnerabilities in its MOVEit product. In other news, Clorox warned of the costs of a cyberattack, and Microsoft is planning to phase out VBScript in Windows to prevent malware distribution.
New Bucket Hijacking Attack Allows Hackers to Reroute Cloud Data Streams to External Storage
A critical cloud storage attack technique dubbed “bucket hijacking” a method that enables threat actors to silently redirect an organization’s active cloud data streams, including
