Aqua Security researchers uncovered six critical vulnerabilities in AWS services, leading to risks like remote code execution, data theft, AI model manipulation, and account takeover. AWS promptly patched these vulnerabilities, but the researchers warn that similar flaws might exist in other AWS and open-source services. They advised organizations on general mitigation strategies to prevent such attacks.
The vulnerabilities, known as “Shadow Resources,” allow attackers to exploit S3 buckets created by certain services like CloudFormation. Attackers can manipulate these buckets to access sensitive data, change configurations, and even take over accounts. They are investigating the issue and will notify affected customers.