惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
U
Unit 42
H
Help Net Security
博客园_首页
雷峰网
雷峰网
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
博客园 - 【当耐特】
Recent Announcements
Recent Announcements
Recorded Future
Recorded Future
aimingoo的专栏
aimingoo的专栏
爱范儿
爱范儿
C
CXSECURITY Database RSS Feed - CXSecurity.com
The Cloudflare Blog
S
Security @ Cisco Blogs
M
MIT News - Artificial intelligence
Cyberwarzone
Cyberwarzone
Cisco Talos Blog
Cisco Talos Blog
Spread Privacy
Spread Privacy
The GitHub Blog
The GitHub Blog
酷 壳 – CoolShell
酷 壳 – CoolShell
K
Kaspersky official blog
MyScale Blog
MyScale Blog
阮一峰的网络日志
阮一峰的网络日志
C
CERT Recently Published Vulnerability Notes
V
Vulnerabilities – Threatpost
WordPress大学
WordPress大学
C
Cisco Blogs
G
Google Developers Blog
N
News and Events Feed by Topic
P
Palo Alto Networks Blog
Apple Machine Learning Research
Apple Machine Learning Research
Schneier on Security
Schneier on Security
博客园 - 聂微东
Security Latest
Security Latest
Security Archives - TechRepublic
Security Archives - TechRepublic
O
OpenAI News
云风的 BLOG
云风的 BLOG
IT之家
IT之家
PCI Perspectives
PCI Perspectives
Microsoft Security Blog
Microsoft Security Blog
NISL@THU
NISL@THU
小众软件
小众软件
Scott Helme
Scott Helme
大猫的无限游戏
大猫的无限游戏
L
LINUX DO - 最新话题
Microsoft Azure Blog
Microsoft Azure Blog
Simon Willison's Weblog
Simon Willison's Weblog
N
News and Events Feed by Topic
F
Fortinet All Blogs
The Last Watchdog
The Last Watchdog

The Register - Security: Research

www.theregister.com Self-destructing Mistic backdoor linked to access broker selling corporate footholds to ransomware gangs PRC-linked spies hid inside medical and military networks for more than a year, snooping through Gmail and stealing data Nobody needs Mythos or 0-days to build a chaos-causing computer worm – free open source models work just fine ChatGPT blindly trusts browser content, turning the page into a payload Russia-linked threat group put ChatGPT to work from lure to payload Kids can bypass some age checks with a drawn-on mustache What type of 'C2 on a sleep cycle' do they leave behind? Novel Chinese spy group found in critical networks in Poland, Asia ORNL builds more sensitive GPS interference detector Researchers find sabotage malware that may predate Stuxnet Vibe coding upstart Lovable denies data leak, cites 'intentional behavior,' then throws HackerOne under the bus Anthropic, Google, Microsoft paid AI bug bounties – quietly Security reserchers tricked Apple Intelligence into cursing Don't open that WhatsApp message, Microsoft warns Security boffins harvest bumper crop of API keys from web Lightning-fast exploits mean patch fast, says Cisco Talos AI agents are 'gullible' and easy to turn into your minions Smooth criminals talking their way into cloud environments, Google says Snoops plant info-stealing malware on iPhones, Google warns Cybercrime up 245% since the start of the Iran war Rogue AI agents can work together to hack systems Fake applicants are sending security-killing malware AI agent hacked McKinsey chatbot for read-write access Kaspersky: No signs Coruna iPhone exploit kit made by US Perplexity Comet browser hole was exploitable via cal invite DEF CON hackers 'fed up with government,' Jake Braun says DEF CON hackers 'fed up with government,' Jake Braun says Ransomware payments cratered in 2025 – attacks did not Ransomware payments cratered in 2025 – attacks did not Claude's collaboration tools allowed remote code execution AI takes a swing at online anonymity Fake 'interview' repos lure Next.js devs into running secret-stealing malware Threat intelligence supply chain is full of weak links AI agents abound, unbound by rules or safety disclosures RAT disguised as an RMM costs crims $300 a month Android malware taps Gemini to navigate infected devices Posting AI caricatures on social media is bad for security Payroll pirates conned the help desk, stole employee’s pay Microsoft boffins show LLM safety can be trained away For the price of Netflix, crooks can rent AI crime ops For the price of Netflix, crooks can rent AI crime ops Fast Pair, loose security: Bluetooth accessories open to silent hijack Fast Pair flaw exposes Bluetooth devices to hijacking A simple CodeBuild flaw put every AWS environment at risk DeadLock ransomware uses smart contracts to evade defenders Python libraries in AI/ML models can be poisoned w metadata OpenAI patches déjà vu prompt injection vuln in ChatGPT Fake Windows BSODs check in at Europe's hotels to con staff into running malware Hotel staff tricked into installing malware by bogus BSODs Your car’s web browser may be on the road to cyber ruin China's Ink Dragon hides out in European government networks Browser 'privacy' extensions have eye on your AI, log all your chats NCSC finds cyber deception tools work, if deployed right 10K Docker images spray live cloud creds across the internet 'Botnets in physical form' are top humanoid robot risk 'Botnets in physical form' are top humanoid robot risk Apache warns of 10.0-rated flaw in Tika metadata toolkit Novel clickjacking attack relies on CSS and SVG 'Exploitation is imminent' of max-severity React bug Swiss government bans SaaS and cloud for sensitive info Scattered Lapsus$ Hunters stress testing Zendesk weak spots HashJack attack shows AI browsers can be fooled with '#' New ClickFix attacks use fake Windows Updates to swipe creds Years-old bugs in open source took out major clouds at risk LLM-generated malware improving, but not operational (yet) 3.5B WhatsApp users' info scooped through enumeration flaw 3.5B WhatsApp users' info scooped through enumeration flaw 50k more ASUS routers pwned by evolving Beijing-linked op Overconfidence is the new zero-day as teams stumble through cyber simulations LLM side-channel attack could allow snoops to guess topic Landfall spyware used in 0-day attacks on Samsung phones MIT Sloan shelves paper about AI-driven ransomware Security hole slams Chromium browsers - no fix yet OpenAI Atlas Browser tripped up by malformed URLs Devs of VS Code extensions are leaking secrets en masse Chatbots that butter you up make you worse at conflict Tile trackers leak unencrypted Bluetooth data, say boffins Beijing's RedNovember hacked critical US, global orgs Lazarus RAT code resurfaces in North Korean IT-worker scams Suspected Chinese spies broke into 'numerous' enterprises Deepfaked calls hit 44% of businesses in last year: Gartner Kaspersky: RevengeHotels returns with AI-coded malware Ruh-roh. DDR5 memory vulnerable to new Rowhammer attack HybridPetya ransomware dodges UEFI Secure Boot
A simple CodeBuild flaw put every AWS environment at risk
Jessica Lyons Jessica Lyons · 2026-01-15 · via The Register - Security: Research

A critical misconfiguration in AWS's CodeBuild service allowed complete takeover of the cloud provider's own GitHub repositories and put every AWS environment in the world at risk, according to Wiz security researchers.

The Wiz kids disclosed this supply chain snafu to AWS in August, and the cloud giant fixed the security issue in September, before a cybercriminal or government-backed goon stumbled upon the misconfiguration and abused it to spark a worldwide meltdown.

This, we're told, prevented a bigger-than-SolarWinds supply chain attack – so be sure to thank your friendly neighborhood security researchers before you go to sleep tonight. 

"This vulnerability compromised a core library used in the AWS Console itself – the central nervous system of the cloud," Wiz vulnerability researcher Yuval Avrahami told The Register. "SolarWinds gave attackers access to corporate networks. This could have given attackers code execution in the very interface administrators use to manage their entire infrastructure."

It's worth noting that last March, Google announced its intention to acquire Wiz for $32 billion and integrate its cloud security offerings into the Google Cloud platform, which competes directly against AWS. The deal has been approved by US regulators but is awaiting approval in the EU and elsewhere.

Breaking the code(build)

In an analysis shared with The Register ahead of publication, Avrahami and co-authors detailed the supply chain vulnerability they dubbed CodeBreach. 

It exists in CodeBuild, AWS's managed continuous integration (CI) service that commonly connects to GitHub repos. And it's caused by two missing characters in the webhook filters - rules that an event must meet to trigger a build - that are supposed to defend against untrusted pull requests.

AWS says all customers are OK

AWS sent The Reg the following in response to Wiz's findings.

"AWS immediately investigated Wiz's research and found that there was no impact on the confidentiality or integrity of any customer environment or AWS service."

"To mitigate any potential future threats related to the findings, we implemented additional remediations."

The cloud giant has published a security bulletin about the matter.

Avrahami added the security threat may extend well beyond AWS.

"This vulnerability exploits a blind spot in CI/CD [continuous integration/continuous delivery] security, not a flaw unique to AWS," he told us. "This specific risk – granting excessive privileges to external contributors via automated CI/CD builds – is a universal challenge. Whether using GitHub Actions, Jenkins, or Cloud CI services like AWS CodeBuild, every major cloud provider and tech company faces this exact risk in their open-source supply chains."

In a statement published in the Wiz report, an AWS spokesperson said the cloud provider investigated and fixed the issues, and determined that the configuration flaw identified by the researchers had "no impact" on any customer environment or AWS service.

This vulnerability exploits a blind spot in CI/CD security, not a flaw unique to AWS

"AWS took a number of steps to mitigate all issues discovered by Wiz, as well as additional steps and mitigations to protect against similar possible future issues," the statement said. "The core issue of actor ID bypass due to unanchored regexes for the identified repos was mitigated within 48 hours of first disclosure," the statement continued, adding that AWS also enacted "further protections of all build processes that contain Github tokens or any other credentials in memory."

But wait, there's more: AWS also says it audited all other public build environments to ensure that no similar security flaws exist across its open source projects. Plus, it audited the logs of all public build repositories and associated CloudTrail logs, which "determined that no other actor had taken advantage of the unanchored regex issue demonstrated by the Wiz research team."

Poking around the CI pipeline

The Wiz team started poking around in Amazon's CI pipeline following an attempted supply-chain attack on the Amazon Q VS Code extension caused by a similar CodeBuild issue.

First, the researchers decided to search for GitHub repositories connected to public CodeBuild projects.

"When set to public, CodeBuild projects expose their settings via a publicly accessible dashboard and automatically link to it in the status of any commit that triggers a build. From the dashboard, anyone can view the project's build logs and configurations - including the exact webhook filters being used," they wrote in the report.

They found four that were active and configured to run builds on pull requests:

  • The AWS SDK for JavaScript (aws/aws-sdk-js-v3)
  • AWS Libcrypto (aws/aws-lc)
  • Amazon Corretto Crypto Provider (corretto/amazon-corretto-crypto-provider)
  • The Registry of Open Data on AWS (awslabs/open-data-registry)

All four projects used the ACTOR_ID webhook filter, a safety feature that provides an allow-list of approved GitHub user IDs. Only these trusted users can trigger a build.

The filter was a regular expression (regex) pattern - but it wasn't anchored. "Without the start ^ and end $ anchors to require an exact match, a regex engine doesn't look for a string that perfectly matches the pattern, but one that merely contains it," the researchers wrote. "This meant that any GitHub user ID that is a superstring of an approved ID could bypass the filter."

Creating a repo admin out of thin air

Next, the security sleuths figured out how to register a new GitHub user ID that contained an existing maintainer's ID. For this, they used GitHub Apps, which allows users to create an app - this generates a corresponding bot user that can interact with pull requests and a unique confirmation URL - and has a feature that allows users to automate app creation requests. 

Wiz automated 200 of these app creation requests via GitHub Apps in the hopes that one of these would capture a user ID that could bypass the ACTOR_ID filter. It worked, and now Wiz had a trusted maintainer ID for the AWS SDK for JavaScript repository.

The researchers then prepared a pull request that looked like a routine contribution to fix a legit issue. Inside, however, they hid the payload: an NPM package dependency designed to execute in the build environment and extract the GitHub credentials.

"Moments later, we had successfully obtained the GitHub credentials of the aws-sdk-js-v3 CodeBuild project," they wrote.

They escalated privileges and created a repository administrator who could push code to the main branch, approve pull requests, and exfiltrate repository secrets, providing "a clear path for supply chain attacks."

An attacker could inject malicious code into the JavaScript SDK right before its latest release is published (this happens on a weekly basis), thus infecting all downstream users. And according to Wiz, the scope of such an attack is "staggering." The cloud security outfit says 66 percent of cloud environments include the JavaScript SDK, and one of these users is the AWS Console.

The researchers also used this same method to gain full admin-level privileges to "several" other repositories, including one that they said looked to be AWS' private mirrors of the JavaScript SDK.

Any intermediate developer could execute it. The real challenge is stealth: crafting a payload that looks benign enough in the case someone inspects the library code

At this point, realizing the takeover's "potential impact," Wiz turned their research over to AWS.

According to Avrahami, this type of attack required a "surprisingly low" level of technical expertise.

"This attack relies on standard developer workflows - forking a repo and submitting a pull request - rather than sophisticated exploits," he told The Register. "Any intermediate developer could execute it. The real challenge is stealth: crafting a payload that looks benign enough in the case someone inspects the library code."

Plus, it's an attack vector that appeals to both "nation-state actors seeking espionage and cybercriminal syndicates seeking scale," Avrahami added. "Once in control of the repositories, they could have injected backdoors into the SDK to harvest credentials from millions of applications, exfiltrate sensitive data, or target the AWS Console itself to manipulate cloud infrastructure undetected." ®