Cybersecurity researchers have uncovered significant vulnerabilities in Amazon Web Services (AWS) offerings that could have severe implications if exploited successfully.
“These vulnerabilities range from remote code execution (RCE) to full-service user takeover, potential AI module manipulation, data exposure, exfiltration, and denial of service,” reported cloud security company Aqua in a detailed analysis shared with The Hacker News.
After responsible disclosure in February 2024, Amazon worked to address the issues from March to June. The findings were presented at Black Hat USA 2024.
At the core of the problem is a security flaw known as Bucket Monopoly, involving a technique termed Shadow Resource. This method leads to the automatic creation of AWS S3 buckets when certain services like CloudFormation, Glue, EMR, SageMaker, ServiceCatalog, and CodeStar are used.