Bleeping Computer

whoAMI attacks give hackers code execution on Amazon EC2 instances

Security researchers discovered a name confusion attack that allows access to an Amazon Web Services account to anyone that publishes an Amazon Machine Image (AMI) with a specific name. Dubbed "whoAMI ...
CSOonline

whoAMI name confusion attacks can expose AWS accounts to malicious code execution

Thousands of active AWS accounts are vulnerable to a cloud image name confusion attack that could allow attackers to execute codes within those accounts. According to DataDog research, vulnerable ...

Amazon EC2 instances under fire from whoAMI attacks potentially giving hackers code execution access

A flaw named WhoAMI was found in Amazon Machine Image It allows threat actors to gain RCE abilities on people's AWS accounts ...
Dark Reading

Cryptominer Found Embedded in AWS Community AMI

Security researchers urge AWS customers running Elastic Cloud Compute (EC2) instances based on community Amazon Machine Images (AMIs) to check for potentially malicious embedded code, following their ...
TechRadar

Amazon EC2 instances could be under fire from whoAMI technique giving hackers code execution access

A flaw named WhoAMI was found in Amazon Machine Image It allows threat actors to gain RCE abilities on people's AWS accounts A fix has been released, but many users are still yet to update Amazon Web ...