Hacking news

Compromised IAM Credentials Power a Large AWS Crypto Mining Campaign

on December 16, 2025

The Hacker News

An ongoing campaign has been observed targeting Amazon Web Services (AWS) customers using compromised Identity and Access Management (IAM) credentials to enable cryptocurrency mining. The activity, first detected by Amazon's GuardDuty managed threat detection service and its automated security monitoring systems on November 2, 2025, employs never-before-seen persistence techniques to hamper

More From Author

Hacking news

36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants

April 4, 2026

The Hacker News

Hacking news

Fortinet Patches Actively Exploited CVE-2026-35616 in FortiClient EMS

April 4, 2026

The Hacker News

Hacking news

China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing

April 3, 2026

The Hacker News

Compromised IAM Credentials Power a Large AWS Crypto Mining Campaign

More From Author

36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants

Fortinet Patches Actively Exploited CVE-2026-35616 in FortiClient EMS

China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing

Rogue NuGet Package Poses as Tracer.Fody, Steals Cryptocurrency Wallet Data

smallstep Step-CA Certificate Signing authentication bypass vulnerability

Leave a Reply Cancel reply