The Hacker News

Hackers Exploit Pandoc CVE-2025-51591 to Target AWS IMDS and Steal EC2 IAM Credentials

The vulnerability in question is CVE-2025-51591 (CVSS score: 6.5), which refers to a case of Server-Side Request Forgery ...
InfoQ

Amazon GuardDuty Adds Detection of EC2 Credential Usage from Other AWS Accounts

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
Threat Post

Amazon Fixes Ring Video Doorbell Flaw That Leaked Wi-Fi Credentials

Amazon has patched a vulnerability in its Ring smart doorbell device that could allow attackers to access the owner’s Wi-Fi network credentials and potentially reconfigure the device to launch an ...
Threat Post

Amazon-Themed Phishing Campaigns Swim Past Security Checks

A pair of recent campaigns aim to lift credentials and other personal information under the guise of Amazon package-delivery notices. Amazon in the era of COVID-19 has become a staple of many people’s ...
VentureBeat

Amazon releases 'login and pay with Amazon' — can you feel PayPal sweating?

Amazon released a “login and pay with Amazon” service today that you can use to pay for online goods and services using your Amazon account information. Amazon has 215 million active customer accounts ...
BusinessWorld

Credentials track addresses upskilling needs

ONLINE LEARNING platform Coursera said its new Skills Track program is designed to help provide credentials to workers that will be instrumental in building their careers. “Companies are deploying new ...