The malware harvests AWS credentials and installs Monero cryptominers. A cryptomining worm from the group known as TeamTNT is spreading through the Amazon Web Services (AWS) cloud and collecting ...

Security researchers have discovered what appears to be the first crypto-mining malware operation that contains functionality to steal AWS credentials from infected servers. This new data-stealing ...

A major operation seeking exposed credentials of Amazon Web Services (AWS) customers has been discovered, with hackers scanning millions of websites and exfiltrating sensitive data from thousands of ...

Misconfigured cloud instances have once again been abused to steal sensitive information such as login credentials, API keys, and more. This time around, the victims were countless Amazon Web Services ...

Recently, security researchers Socket found 10 packages on npm targeting software developers, specifically those who use the ...

Researchers find vulnerabilities in public sites that exposed sensitive information They later discovered a campaign using the flaws to exfiltrate data from "millions of websites" The crooks were ...

A new Python-based credential harvester and SMTP hijacking tool named ‘Legion’ is being sold on Telegram that targets online email services for phishing and spam attacks. Legion is sold by ...

An advanced malware campaign on the npm registry steals the very keys that control enterprise cloud infrastructure.