The Hacker News

Hackers Exploit Pandoc CVE-2025-51591 to Target AWS IMDS and Steal EC2 IAM Credentials

The vulnerability in question is CVE-2025-51591 (CVSS score: 6.5), which refers to a case of Server-Side Request Forgery ...
Security Boulevard

Privileged AWS Permissions You Should Restrict Immediately (Top 25 + Bonus)

Drumroll, please… 🥁 After five weeks of countdowns, breakdowns, and some very lively conversations, we’ve finally reached the end of the Top 25 Most Risky AWS Privileged Permissions, plus a special ...
CRN

AWS Revamps Security Competency To ‘Accelerate’ Cloud Sales

Here’s what AWS channel partners, ISVs and customers need to know about the revamped AWS Security Competency and its eight new categories. Amazon Web Services has reinvented its popular AWS Security ...
Infosecurity-magazine.com

A 10-Step Best Practice IAM Guide for Azure and AWS

Identity and access management (IAM) is the process of identifying and controlling the access granted to users, devices and services. It is one of the oldest concepts in security, tracing back to the ...
Business Insider

Qualys Integrates with Amazon Web Services Security Hub to Provide Users with Vulnerability and Compliance Visibility

LAS VEGAS, Nov. 28, 2018 /PRNewswire/ -- AWS re:Invent, Booth #2529 – Qualys, Inc. (NASDAQ: QLYS), a leading provider of cloud-based security and compliance solutions, today announced an integration ...
Forbes

The Truth About Privileged Access Security On AWS and Other Public Clouds

Bottom Line: Amazon’s Identity and Access Management (IAM) centralizes identity roles, policies and Config Rules yet doesn’t go far enough to provide a Zero Trust-based approach to Privileged Access ...