Alert: Threat Actors Can Leverage AWS STS to Infiltrate Cloud Accounts
December 6, 2023 at 09:12AM Amazon Web Services Security Token Service (AWS STS) can be exploited by attackers to gain cloud access and impersonate user roles, according to Red Canary researchers. They recommend monitoring CloudTrail events and rotating IAM keys to mitigate token abuse in cloud security management. Meeting Takeaways: – AWS STS can be … Read more