AWS Lambda, Data and Information Security, Data Breach Archives

AWS Lambda, Data and Information Security, Data Breach

AWS environments compromised through exposed .env files

Posted on August 22, 2024 by Onsite Computing, Inc.

A data extortion campaign that compromises AWS resources through credentials collected from environment (.env) files stored insecurely on web servers has been uncovered by Unit 42 researchers. The exposed files contained AWS access keys, credentials for databases and social media accounts, API keys for SaaS applications and email services, as well as access tokens for […]

Continue reading →

AWS Lambda, Data and Information Security, Data Breach

AWS environments compromised through exposed .env files

Posted on August 18, 2024 by Onsite Computing, Inc.

A data extortion campaign that compromises AWS resources through credentials collected from environment (.env) files stored insecurely on web servers has been uncovered by Unit 42 researchers. The exposed files contained AWS access keys, credentials for databases and social media accounts, API keys for SaaS applications and email services, as well as access tokens for […]

Continue reading →

This site uses cookies to offer you a better browsing experience. By browsing this website, you agree to our use of cookies.

More info