Shai-Hulud 2.0 NPM malware attack exposed up to 400,000 dev secrets

The second Shai-Hulud attack last week exposed around 400,000 raw secrets after infecting hundreds of packages in the NPM ...

Shai-Hulud 2.0 Credential Leak Hits Zapier, PostHog and Postman — User Data At Risk

Hulud 2.0,' has created a severe supply chain crisis, compromising key platforms like Zapier, PostHog, and Postman.
Dark Reading

'Elektra-Leak' Attackers Harvest AWS Cloud Keys in GitHub Campaign

Attackers are actively harvesting exposed Amazon Web Services (AWS) identity and access management (IAM) credentials in public GitHub repositories to create AWS Elastic Compute (EC2) instances for ...
AppleInsider

How to use AWS CodeBuild to make macOS apps

CodeBuild is an Amazon Web Service tool for automating the building of software. Now you can use it to build macOS and iOS apps. Amazon Web Services (AWS) is a comprehensive set of cloud computing ...
TechRadar

Exposed AWS credentials stolen within minutes by Github hackers

GitHub has a unique security feature - it scans the code for exposed Amazon Web Services (AWS) keys (among other things) and if it finds them, it reports them to AWS which can act to prevent misuse - ...