CSOonline

ECScape: New AWS ECS flaw lets containers hijack IAM roles without breaking out

Naor Haziz’s discovery shows how a compromised container on EC2-backed ECS tasks can impersonate the ECS agent and steal IAM credentials from other tasks—without host access. At Black Hat USA 2025, ...
Virtualization Review

Creating an IAM Role for the AWS Fault Injection Simulator

Brien walks through the process of creating an IAM role for the AWS Fault Injection Simulator in order to find out what happens when an EC2 spot instance is interrupted. I recently wrote a blog post ...
Bleeping Computer

Hackers target SSRF bugs in EC2-hosted sites to steal AWS credentials

A targeted campaign exploited Server-Side Request Forgery (SSRF) vulnerabilities in websites hosted on AWS EC2 instances to extract EC2 Metadata, which could include Identity and Access Management ...
Dark Reading

Privilege Escalation Issue in Amazon ECS Leads to IAM Hijacking

BLACK HAT USA – Las Vegas – Thursday, Aug. 7 — A privilege escalation issue in Amazon's Elastic Container Service (ECS) could be used by an attacker to steal credentials and access other cloud ...