Overprivileged Access Vulnerabilities: What Leaders Need To Know

Excessive permissions amplify cyber risk. Breaches from Target to Microsoft reveal how overprivileged access transforms minor compromises into catastrophic failures.
SiliconANGLE

AWS IAM credentials at risk: EleKtra-Leak operation revealed by Unit 42

A new report from Palo Alto Networks Inc.’s Unit 42 warns of a new active campaign targeting exposed Amazon Web Services Inc. identity and access management credentials within public GitHub ...
Business Wire

YouAttest Unifies, Automates, and Simplifies Cloud IAM Audits for Hybrid AWS Enterprises

IRVINE, Calif.--(BUSINESS WIRE)--SYouAttest®, a leading provider of Identity Audit and Compliance tools, introduced a new solution that creates a “single source of truth” for security and risk ...
Computer Weekly

Warning: AWS IAM behaves differently to directory services

Researchers from Israeli security firm Lightspin have identified an issue with configuring identity and access control services on Amazon Web Services (AWS) that could leave many organisations ...
Virtualization Review

Creating an IAM Role for the AWS Fault Injection Simulator

Brien walks through the process of creating an IAM role for the AWS Fault Injection Simulator in order to find out what happens when an EC2 spot instance is interrupted. I recently wrote a blog post ...
CSOonline

ECScape: New AWS ECS flaw lets containers hijack IAM roles without breaking out

Naor Haziz’s discovery shows how a compromised container on EC2-backed ECS tasks can impersonate the ECS agent and steal IAM credentials from other tasks—without host access. At Black Hat USA 2025, ...