Security news aggregator

Latest cybersecurity reporting from selected sources.

Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.

2 headlines in this view

Showing 2 most recent headlines Filtered view

The Hacker News 8 months, 1 week ago

Hackers Exploit Pandoc CVE-2025-51591 to Target AWS IMDS and Steal EC2 IAM Credentials

Cloud security company Wiz has revealed that it uncovered in-the-wild exploitation of a security flaw in a Linux utility called Pandoc as part of attacks designed to infiltrate Amazon Web Services (AWS) Instance Metadata Service (IMDS)

More from The Hacker News 24 Sep 2025, 7:15 p.m. CVE-2025-51591 Amazon Amazon Web Services CVE Cloud Credentials Exploit Flaw Identity and Access Management Linux Theft Vulnerability

Bleeping Computer 4 years, 1 month ago

Amazon Web Services fixes container escape in Log4Shell hotfix

Amazon Web Services (AWS) has fixed four security issues in its hot patch from December that addressed the critical Log4Shell vulnerability (CVE-2021-44228) affecting cloud or on-premise environments running Java applications with a vulnerable version of the Log4j logging library or containers. [...]

More from Bleeping Computer 20 Apr 2022, 8:45 p.m. Actively exploited CVE-2021-44228 Amazon Amazon Web Services CVE Cloud Critical Fixed Java Library Log4Shell Log4j Patch Vulnerability

Latest cybersecurity reporting from selected sources.

Refine the feed

Volume over time

Fresh headlines available

Hackers Exploit Pandoc CVE-2025-51591 to Target AWS IMDS and Steal EC2 IAM Credentials

Amazon Web Services fixes container escape in Log4Shell hotfix