Tag: cloud

All items tagged cloud.

• Klue / Icarus — one dormant integration credential cascades into multi-tenant Salesforce CRM theft
  in 2026-W25
• Research: the AI agent and toolchain control plane became a concrete attack-surface class this week
  in 2026-W25
• UPDATE: Klue OAuth-token breach — victim list grows, CRM-API abuse chain detailed
  in 2026-06-21
• Icarus extortion group turns a dormant Klue credential into bulk Salesforce CRM theft across customers
  in 2026-06-19
• Unit 42 "Pickle in the Middle": cross-tenant code execution in Google Vertex AI via predictable staging buckets (CVE-2026-2473)
  in 2026-06-17
• UPDATE: Novo Nordisk — FulcrumSec claims authorship, $25M demand refused, data offered for private sale
  in 2026-06-17
• Imperva and Varonis: indirect prompt injection and "agent phishing" against the OpenClaw AI agent — fixed in v2026.4.23, but the attack class generalises
  in 2026-06-12
• ServiceNow unauthenticated REST endpoint queried customer instance tables before a silent 5 June patch
  in 2026-06-11
• "Ghost-Sender": Exchange Online accepts spoofed inbound mail bypassing SPF/DKIM/DMARC when a third-party MX fronts the tenant — no vendor patch
  in 2026-06-10
• Unit 42 catalogues cloud-logging defense-evasion across AWS CloudTrail and Google Cloud Logging — with concrete detection mappings [SINGLE-SOURCE]
  in 2026-06-10
• Red Canary: Microsoft Entra Agent ID abuse — OBO OAuth flow turns a compromised AI agent into a delegated phishing sender [SINGLE-SOURCE]
  in 2026-06-10
• UPDATE: Shai-Hulud/Miasma supply-chain worm jumps to PyPI as "Hades" — 37 malicious wheels across 19 packages
  in 2026-06-10
• UPDATE: TeamPCP open-sources its Mini Shai-Hulud framework, spawning a new "Phantom Gyp" derivative
  in 2026-06-09
• IronWorm + Miasma AI coding-agent injection: two supply-chain worms target cloud credentials and developer toolchains simultaneously
  in 2026-W23
• Miasma / TeamPCP supply-chain worm: from npm credential theft to AI coding-agent config injection across the week
  in 2026-W23
• Technology / software supply chain — four concurrent worm/supply-chain threats in one week
  in 2026-W23
• IronWorm: Rust-built npm worm ships an eBPF kernel rootkit, Tor C2 and a cloud/AI-credential sweep
  in 2026-06-06
• UPDATE: Miasma supply-chain worm reaches 73 Microsoft GitHub repositories, adds Azure credential collectors
  in 2026-06-06
• Enclave: a single debug flag left on in six Microsoft 365 Android apps allowed silent OAuth-token theft
  in 2026-06-04
• Symantec: five-month, low-and-slow mailbox-espionage campaign against a global stock exchange
  in 2026-06-04
• "Miasma" worm backdoors 32 Red Hat Cloud Services npm packages via OIDC trusted-publishing abuse
  in 2026-06-02
• PostHog rotates all AWS credentials after researcher-confirmed cloud exploit; EU and US clouds degraded
  in 2026-06-01
• Two concurrent npm dependency-confusion campaigns target internal corporate namespaces
  in 2026-06-01
• Mautic 7.1.2 / 6.0.9 — seven authenticated flaws, including two post-auth RCE paths (SSTI and path-traversal-to-PHP-RCE), an SSRF and an API authorization bypass
  in 2026-05-31
• Sysdig TRT: first observed LLM-agent-driven post-exploitation — CVE-2026-39987 Marimo notebook RCE to database exfiltration in 4 pivots under one hour
  in 2026-05-30
• [SINGLE-SOURCE] Red Canary: detecting Entra Agent ID privilege escalation — credential injection into agent blueprints enables lateral movement across the entire tenant
  in 2026-05-30
• TechCrunch finds 100 K passport scans and selfies on a public-read S3 bucket behind a UK Visa Portal lookalike
  in 2026-05-29
• Wiz CIRT names JINX-0164 — LinkedIn-recruiter lures, AUDIOFIX macOS infostealer, MINIRAT npm pivot into CI/CD
  in 2026-05-29
• UPDATE: ShinyHunters Salesforce campaign — Charter and 7-Eleven both confirm; 7-Eleven count put at ~185,000 affected
  in 2026-05-27
• "Underminr": a multi-tenant-CDN domain-fronting variant that blinds DNS-layer filtering
  in 2026-05-25
• UPDATE: ShinyHunters lists Charter Communications (Spectrum) — telco victim in the Salesforce-credential campaign
  in 2026-05-25
• ShinyHunters Salesforce-credential extortion — three named victims confirmed across the week, capped by Carnival's 5.99M-record disclosure
  in 2026-W22
• AI tooling as lure, attack surface and force-multiplier — the cross-day pattern no single daily framed whole
  in 2026-W22
• UK Visa Portal — ~100,000 passport scans and selfies on a public-read S3 bucket behind a government-lookalike site
  in 2026-W22
• Mini Shai-Hulud / TeamPCP — @antv npm wave and confirmed Maven Central poisoning; Cargo still un-hit
  in 2026-W22
• Deleted Google Cloud API keys keep authenticating for up to 23 minutes
  in 2026-05-24
• Megalodon mass-poisons 5,561 GitHub repos in a 6-hour window; SysDiag + Optimize-Build workflows exfiltrate cloud credentials and OIDC tokens
  in 2026-05-23
• FBI PSA260521 — Kali365 OAuth device-code PhaaS bypasses M365 MFA without credential capture
  in 2026-05-23
• Unit 42 — ROADtools operationalised by Midnight Blizzard, Curious Serpens and UTA0355 for Entra ID device registration, token theft and tenant enumeration
  in 2026-05-23
• Webworm (China-aligned) shifts to EU government targets — EchoCreep (Discord C2) and GraphWorm (Microsoft Graph / OneDrive C2) backdoors documented by ESET, with Belgian, Italian, Serbian, Polish and Spanish governmental victims
  in 2026-05-21
• CVE-2026-42822 — Microsoft Azure Local Disconnected Operations (ALDO): CVSS 10.0 unauthenticated network elevation-of-privilege, "Exploitation More Likely"
  in 2026-05-21
• UPDATE: TeamPCP / Mini Shai-Hulud campaign — GitHub itself breached (~3,800 internal repos via poisoned VS Code extension), Microsoft `durabletask` PyPI worm propagates via AWS SSM and `kubectl exec`, Grafana confirms missed-token-rotation root cause
  in 2026-05-21
• actions-cool/issues-helper GitHub Action compromised — 53 tags moved to imposter commit reading Runner.Worker /proc/PID/mem; linked to Mini Shai-Hulud
  in 2026-05-20
• Nx Console VS Code extension (2.2 M installs) compromised via stolen publisher credentials — 11-minute window 2026-05-18 12:36–12:47 UTC
  in 2026-05-20
• CISA contractor (Nightwing) exposed AWS GovCloud admin keys and internal credentials in public GitHub repo for ~6 months
  in 2026-05-19
• 7-Eleven confirms ShinyHunters breach of 600,000+ Salesforce franchise-application records — same campaign as Instructure, Vimeo, Wynn Resorts, Vercel, Medtronic
  in 2026-05-19
• THORChain GG20 Threshold Signature Scheme vault drain — ~$11M across nine chains; Switzerland-based protocol
  in 2026-05-18
• TeamPCP / Mini Shai-Hulud supply-chain worm — CI/CD credential theft running all week; GitHub itself among claimed victims
  in 2026-W21
• TeamPCP / Mini Shai-Hulud / Megalodon — the open-sourced supply-chain worm became commodity infrastructure this week
  in 2026-W21
• CVE-2026-42822 — Azure Local Disconnected Operations: CVSS 10.0 unauthenticated network elevation-of-privilege
  in 2026-W21
• Technology / developer toolchain — CI/CD supply chain remains the week's highest-volume attack surface
  in 2026-W21
• 7-Eleven — ShinyHunters Salesforce campaign claims another 600,000+ records
  in 2026-W21
• Webworm (China-aligned; FishMonger / Aquatic Panda) — pivots to EU government targets
  in 2026-W21
• Midnight Blizzard and others operationalise ROADtools for Entra ID abuse
  in 2026-W21
• Kaspersky GReAT documents Kimsuky's Rust-based HelloDoor and TryCloudflare-tunnel C2 added to the PebbleDash toolkit [SINGLE-SOURCE]
  in 2026-05-17
• GTIG: UNC6671 "BlackFile" vishing → AiTM → rogue-MFA → programmatic SharePoint exfiltration of 1M+ files per victim; DLS shutdown signals probable rebrand [SINGLE-SOURCE]
  in 2026-05-16
• GemStuffer — RubyGems weaponised as a one-way exfiltration channel scraping UK local-authority ModernGov portals; new abuse pattern targets the asymmetric monitoring gap between package pull and push
  in 2026-05-14
• UPDATE: TeamPCP (UNC6780 / PCPJack ecosystem) backdoors the Checkmarx Jenkins AST plugin — third Checkmarx supply-chain compromise in three months, SANDCLOCK exfiltrates every CI secret reachable from the runner
  in 2026-05-12
• Audit Jenkins pipelines for Checkmarx AST plugin auto-update window 2026-05-09 → 2026-05-10 and treat any match as full secrets compromise
  in 2026-05-12
• Implement egress controls on LLM API endpoints for production server workloads
  in 2026-05-12
• CVE-2026-42208 LiteLLM Proxy — pre-auth SQL injection exposing upstream LLM-provider API keys at the multi-tenant SaaS layer
  in 2026-W19
• ShinyHunters / WorldLeaks — week-long cross-incident operator activity touching Inditex, Vimeo, ADT, and Instructure / Canvas
  in 2026-W19
• CVE-2026-26030 + CVE-2026-25592 — Microsoft Semantic Kernel Python and .NET SDKs: a class-of-bug for agentic-AI frameworks
  in 2026-W19
• AI tooling SaaS (multi-tenant credential aggregation, US)
  in 2026-W19
• TeamPCP → PCPJack — cloud-worm successor evicting prior operator artefacts
  in 2026-W19
• Braintrust AI evaluation platform AWS account breach — multi-tenant LLM-provider keys and SaaS credentials at risk; mandatory key rotation across customer base
  in 2026-05-10
• CVE-2026-26030 / CVE-2026-25592 — Microsoft Semantic Kernel: prompt-injection-to-RCE in the Python and .NET SDKs of Microsoft's AI agent orchestration framework (CVSS 9.9 each)
  in 2026-05-10
• PCPJack — modular cloud-credential-theft worm displaces TeamPCP using five public CVEs and a multi-cloud key-harvesting pipeline
  in 2026-05-10
• Hardening / mitigation
  in 2026-05-10
• Upgrade Microsoft Semantic Kernel and audit `[KernelFunction]` methods
  in 2026-05-10
• CVE-2026-42208 — LiteLLM Proxy pre-authentication SQL injection: CISA KEV deadline 2026-05-11; all upstream LLM API keys at risk
  in 2026-05-09
• Amazon SES weaponised for authenticated phishing and BEC (Kaspersky, 2026-05-04, ~96 h)
  in 2026-05-08