Stay informed on Amazon's latest info security updates, threats, and best practices. Your hub for all Amazon-centric cybersecurity news.
Search across headline titles and summaries.
Background for this topic.
Amazon is a multinational technology company predominantly known for its online retail platform, Amazon.com, cloud computing services through Amazon Web Services (AWS), and various consumer electronics like the Kindle e-reader, Echo smart speakers, and Fire TV. In the realm of information security, Amazon is an entity of significant importance due to the vast amount of user data it handles and its extensive infrastructure that is increasingly targeted by cyber threats.
Information security concerning Amazon covers a broad spectrum of topics such as securing its ecommerce platform to protect customer transactions and privacy, defending cloud services against data breaches and unauthorized access, and ensuring the security of IoT devices to prevent potential exploits. This domain focuses on implementing robust security measures, developing encryption technologies, conducting threat assessments, and adhering to compliance standards to safeguard both the company's assets and its users' data against cyber-attacks, data theft, and other security vulnerabilities.
Weekly headline count for the current query.
A large-scale credential harvesting operation has been observed exploiting the React2Shell vulnerability as an initial infection vector to steal database credentials, SSH private keys, Amazon Web Services (AWS) secrets, shell command history, Stripe API keys, and GitHub tokens at scale
Interlock's post-exploit toolkit exposed Ransomware criminals exploited CVE-2026-20131, a maximum-severity bug in Cisco Secure Firewall Management Center software, as a zero-day vulnerability more than a month before Cisco patched the hole, according to Amazon security boss CJ Moses.…
Amazon Threat Intelligence is warning of an active Interlock ransomware campaign that's exploiting a recently disclosed critical security flaw in Cisco Secure Firewall Management Center (FMC) Software
Amazon Web Services (AWS) has fixed four security issues in its hot patch from December that addressed the critical Log4Shell vulnerability (CVE-2021-44228) affecting cloud or on-premise environments running Java applications with a vulnerable version of the Log4j logging library or containers. [...]