You dont have javascript enabled! Please enable it!
  • Tech News
    iPhone 15 Pro design once again blamed for causing some units to overheat

    iPhone 15 Pro design once again blamed for causing some units to overheat

    9to5Mac Daily: September 27, 2023 – macOS Sonoma released, Vision Pro roadmap changes

    9to5Mac Daily: September 27, 2023 – macOS Sonoma released, Vision Pro roadmap changes

    iOS 17.1 brings Dynamic Island flashlight indicator to iPhone 14 Pro and iPhone 15

    iOS 17.1 brings Dynamic Island flashlight indicator to iPhone 14 Pro and iPhone 15

    Apple TV+ playback glitch causing episodes to cut off ending, credits play first

    Apple TV+ playback glitch causing episodes to cut off ending, credits play first

  • Reviews
    Avatar Of Jazib Zaman

    Stellar Converter for OST: The Best Tool to Convert OST Files to PST

    TechEngage®

    Everything You Need to Know About the Latest iPhone 14

    TechEngage®

    An ambitious phone with Wild Camera & tricks

    TechEngage®

    Google Pixel 3 Review: Consistently Unbeatable Camera Lord

    TechEngage®

    Pocophone F1 review: “Flagship Killer” killer?

    Slim, Slick & Economically Premium

    Slim, Slick & Economically Premium

  • Noteworthy
    TechEngage®

    Russia to briefly “turn off” country’s Internet entry. But why?

    TechEngage®

    Sprint announces first solid plans to unveil 5G infrastructure at MWC19

    Drunk shopping could be a $45 billion industry

    Drunk shopping could be a $45 billion industry

    TechEngage®

    The advantages and benefits of electronic signature

    TechEngage®

    Father of “cut, copy, and paste” Larry Tesler, dies at 74

    TechEngage®

    How the use of modern technology is messing up our sleep

  • Science
    • All
    • Energy
    • Environment
    • Health
    • Space
    Avatar Of Ali Raza

    5 Best laptops for every budget this 2023

    What are interest rates, and how do they work?

    What are interest charges, and how do they work?

    Avatar Of Jazib Zaman

    Market Analysis: How Will Wall Street Respond to the End of Fed’s Rate Hike Streak?

    Avatar Of Jazib Zaman

    US Congress Avoids Default: Senate Passes Debt Ceiling Bill

  • Opinions
    TechEngage®

    igaming Industry: Tech And Marketing That’s Behind It Explained

    TechEngage®

    Features Which Make a SmartPhone “Smart”

    TechEngage®

    How Drones Will Rule the Skies in the Future

    TechEngage®

    Fundamentals of Wealth Creation for Better Outcomes

    TechEngage®

    Change; The only Constant in this World

    TechEngage®

    Proactive & Reactive being two extremes of different worlds

  • Applications
    TechEngage®

    Google Play Pass will give access to paid apps

    TechEngage®

    Quizlet reaches 50 Million Users milestone

    TechEngage®

    Eradicate Gender Inequality through Crowd mapping!

    TechEngage®

    How mobile phone apps can help pregnant women

    TechEngage®

    Apple News app will be broadcasting live election results

    TechEngage®

    TikTok becomes the most downloaded app on the App Store

  • Blockchain
    Avatar Of Aima Irfan

    From Pixels to Earnings: Unveiling NFTs and the Digital Arts Revolution!

    Rising Influence of Cryptocurrencies in Sports Markets

    Avatar Of Jazib Zaman

    What is DeFi? Newbies’ Guide to Decentralized Finance

    TechEngage®

    Crypto Casinos: Exploring the Advantages of Gambling with Bitcoin and Other Cryptocurrencies

    Avatar Of Guest Author

    How to Reduce Losses from Crypto Sports Betting

    TechEngage®

    Is Bitcoin Prime Scam or Legit? – key features of Bitcoin Prime

  • Applications
    TechEngage®

    Google Play Pass will give access to paid apps

    TechEngage®

    Quizlet reaches 50 Million Users milestone

    TechEngage®

    Eradicate Gender Inequality through Crowd mapping!

    TechEngage®

    How mobile phone apps can help pregnant women

  • Culture
    Two-million-year-old DNA, oldest ever found, opens window to Greenland's past

    Two-million-year-old DNA, oldest ever found, opens window to Greenland’s past

    This Chinese electric car giant will produce in Europe and that could change a lot of things

    This Chinese electric car giant will produce in Europe and that could change a lot of things

  • Deals
    TechEngage®

    Save $400 on Apple’s last-gen 14″ MacE book Pro and new Mac Mini 2023

    TechEngage®

    New York Times joins with Scribd to offer an economical subscription bundle

    TechEngage®

    Motorola puts up some scary good deals for Halloween

    TechEngage®

    Lavender version of Samsung Galaxy Note 9 will be $140 off

  • Events
    TechEngage®

    Nokia to launch new smartphones on April 8th

    TechEngage®

    What to expect from Samsung Galaxy Unpacked event

    TechEngage®

    What to expect from the OnePlus 9 launch event

    TechEngage®

    What to expect from Apple’s WWDC21 event

  • How-to
    Two-million-year-old DNA, oldest ever found, opens window to Greenland's past

    Two-million-year-old DNA, oldest ever found, opens window to Greenland’s past

    This Chinese electric car giant will produce in Europe and that could change a lot of things

    This Chinese electric car giant will produce in Europe and that could change a lot of things

  • Roundups

    4 Best PC Monitors for Gaming in 2023

    5 Best Handheld Video Game Consoles for 2023

    6 Best Car Scratch Removers for 2023

    TechEngage®

    10 Top-notch Apps to amplify your smartphone experience

  • Startups
    Avatar Of Rebecca James

    The Future is Shiny: The Top IT Companies in Asia You Need to Watch Out For

    Two-million-year-old DNA, oldest ever found, opens window to Greenland's past

    Two-million-year-old DNA, oldest ever found, opens window to Greenland’s past

    This Chinese electric car giant will produce in Europe and that could change a lot of things

    This Chinese electric car giant will produce in Europe and that could change a lot of things

    Techabout Banner

    TechAbout: A venture that adds life to your dreams

Thursday, September 28, 2023
Tech News, Magazine & Review WordPress Theme 2017
No Result
View All Result
  • Tech News
    iPhone 15 Pro design once again blamed for causing some units to overheat

    iPhone 15 Pro design once again blamed for causing some units to overheat

    9to5Mac Daily: September 27, 2023 – macOS Sonoma released, Vision Pro roadmap changes

    9to5Mac Daily: September 27, 2023 – macOS Sonoma released, Vision Pro roadmap changes

    iOS 17.1 brings Dynamic Island flashlight indicator to iPhone 14 Pro and iPhone 15

    iOS 17.1 brings Dynamic Island flashlight indicator to iPhone 14 Pro and iPhone 15

    Apple TV+ playback glitch causing episodes to cut off ending, credits play first

    Apple TV+ playback glitch causing episodes to cut off ending, credits play first

  • Reviews
    Avatar Of Jazib Zaman

    Stellar Converter for OST: The Best Tool to Convert OST Files to PST

    TechEngage®

    Everything You Need to Know About the Latest iPhone 14

    TechEngage®

    An ambitious phone with Wild Camera & tricks

    TechEngage®

    Google Pixel 3 Review: Consistently Unbeatable Camera Lord

    TechEngage®

    Pocophone F1 review: “Flagship Killer” killer?

    Slim, Slick & Economically Premium

    Slim, Slick & Economically Premium

  • Noteworthy
    TechEngage®

    Russia to briefly “turn off” country’s Internet entry. But why?

    TechEngage®

    Sprint announces first solid plans to unveil 5G infrastructure at MWC19

    Drunk shopping could be a $45 billion industry

    Drunk shopping could be a $45 billion industry

    TechEngage®

    The advantages and benefits of electronic signature

    TechEngage®

    Father of “cut, copy, and paste” Larry Tesler, dies at 74

    TechEngage®

    How the use of modern technology is messing up our sleep

  • Science
    • All
    • Energy
    • Environment
    • Health
    • Space
    Avatar Of Ali Raza

    5 Best laptops for every budget this 2023

    What are interest rates, and how do they work?

    What are interest charges, and how do they work?

    Avatar Of Jazib Zaman

    Market Analysis: How Will Wall Street Respond to the End of Fed’s Rate Hike Streak?

    Avatar Of Jazib Zaman

    US Congress Avoids Default: Senate Passes Debt Ceiling Bill

  • Opinions
    TechEngage®

    igaming Industry: Tech And Marketing That’s Behind It Explained

    TechEngage®

    Features Which Make a SmartPhone “Smart”

    TechEngage®

    How Drones Will Rule the Skies in the Future

    TechEngage®

    Fundamentals of Wealth Creation for Better Outcomes

    TechEngage®

    Change; The only Constant in this World

    TechEngage®

    Proactive & Reactive being two extremes of different worlds

  • Applications
    TechEngage®

    Google Play Pass will give access to paid apps

    TechEngage®

    Quizlet reaches 50 Million Users milestone

    TechEngage®

    Eradicate Gender Inequality through Crowd mapping!

    TechEngage®

    How mobile phone apps can help pregnant women

    TechEngage®

    Apple News app will be broadcasting live election results

    TechEngage®

    TikTok becomes the most downloaded app on the App Store

  • Blockchain
    Avatar Of Aima Irfan

    From Pixels to Earnings: Unveiling NFTs and the Digital Arts Revolution!

    Rising Influence of Cryptocurrencies in Sports Markets

    Avatar Of Jazib Zaman

    What is DeFi? Newbies’ Guide to Decentralized Finance

    TechEngage®

    Crypto Casinos: Exploring the Advantages of Gambling with Bitcoin and Other Cryptocurrencies

    Avatar Of Guest Author

    How to Reduce Losses from Crypto Sports Betting

    TechEngage®

    Is Bitcoin Prime Scam or Legit? – key features of Bitcoin Prime

  • Applications
    TechEngage®

    Google Play Pass will give access to paid apps

    TechEngage®

    Quizlet reaches 50 Million Users milestone

    TechEngage®

    Eradicate Gender Inequality through Crowd mapping!

    TechEngage®

    How mobile phone apps can help pregnant women

  • Culture
    Two-million-year-old DNA, oldest ever found, opens window to Greenland's past

    Two-million-year-old DNA, oldest ever found, opens window to Greenland’s past

    This Chinese electric car giant will produce in Europe and that could change a lot of things

    This Chinese electric car giant will produce in Europe and that could change a lot of things

  • Deals
    TechEngage®

    Save $400 on Apple’s last-gen 14″ MacE book Pro and new Mac Mini 2023

    TechEngage®

    New York Times joins with Scribd to offer an economical subscription bundle

    TechEngage®

    Motorola puts up some scary good deals for Halloween

    TechEngage®

    Lavender version of Samsung Galaxy Note 9 will be $140 off

  • Events
    TechEngage®

    Nokia to launch new smartphones on April 8th

    TechEngage®

    What to expect from Samsung Galaxy Unpacked event

    TechEngage®

    What to expect from the OnePlus 9 launch event

    TechEngage®

    What to expect from Apple’s WWDC21 event

  • How-to
    Two-million-year-old DNA, oldest ever found, opens window to Greenland's past

    Two-million-year-old DNA, oldest ever found, opens window to Greenland’s past

    This Chinese electric car giant will produce in Europe and that could change a lot of things

    This Chinese electric car giant will produce in Europe and that could change a lot of things

  • Roundups

    4 Best PC Monitors for Gaming in 2023

    5 Best Handheld Video Game Consoles for 2023

    6 Best Car Scratch Removers for 2023

    TechEngage®

    10 Top-notch Apps to amplify your smartphone experience

  • Startups
    Avatar Of Rebecca James

    The Future is Shiny: The Top IT Companies in Asia You Need to Watch Out For

    Two-million-year-old DNA, oldest ever found, opens window to Greenland's past

    Two-million-year-old DNA, oldest ever found, opens window to Greenland’s past

    This Chinese electric car giant will produce in Europe and that could change a lot of things

    This Chinese electric car giant will produce in Europe and that could change a lot of things

    Techabout Banner

    TechAbout: A venture that adds life to your dreams

No Result
View All Result
Tech News
No Result
View All Result

Mitiga researchers disclose AWS Elastic IP hijacking vulnerability

December 23, 2022
in Tech News
Home Tech News

Our mission is to provide unbiased product reviews and timely reporting of technological advancements. Covering all latest reviews and advances in the technology industry, our editorial team strives to make every click count. We aim to provide fair and unbiased information about the latest technological advances.
Share on FacebookShare on Twitter

Gorodenkoff – stock.adobe.com

Cloud incident response supplier Mitiga has said a new AWS feature has led to a vulnerability that could allow hackers to access and steal Elastic IP addresses and gain control over AWS accounts

By

  • Ollie Withers and Brian McKenna

Published: 22 Dec 2022 9:45

Mitiga threat researchers have identified what they describe as a new potential attack vector leveraging recently introduced functionality in Amazon Web Services (AWS) technology that has made changing Elastic IP ownership in AWS Elastic Compute Cloud (EC2) environments easier.

Mitiga is an AWS partner, and provides software and services for security incident response and preparedness in cloud environments.

In October 2022, said the researchers, AWS announced a new Amazon Virtual Private Cloud feature, “Elastic IP transfer”, which allows the transfer of Elastic IP addresses from one AWS account to another. This feature makes it easier to move Elastic IP addresses during AWS account restructuring.

By exploiting this AWS Elastic IP Transfer feature, a threat actor with existing control over an AWS account could compromise an IP address.

This is, said Mitiga, is a “new vector for post-initial-compromise attack, which was not previously possible (and does not yet appear in the MITRE ATT&CK Framework)”. “Organisations may not be aware of its possibility,” it added.

Mitiga said the method “can expand the blast radius of an attack and allow further access to systems relying on IP allowlisting as their primary form of authentication or validation”.

It maintains that the potential attack is unique as “EIP was never considered a resource you should protect from exfiltration”. “The ‘hijacking an EIP’ scenario isn’t even shown as a technique in the MITRE ATT&CK knowledge base, which means this new technique can go ‘under the radar’.”

See also  How to set maturity ratings on Netflix

Malicious actors could attach a stolen EIP to an EC2 instance in their own AWS account for purposes that include reaching a victim’s network endpoints, secured by a firewall that possesses an ingress rule which allows connections from the stolen IP. They could also use the stolen IP for malicious activities, such as phishing campaigns. An EC2 instance is a virtual server in Amazon’s Elastic Compute Cloud for running applications on the AWS infrastructure.

The researchers’ advice to AWS users is to treat their EIP resources like other resources in AWS which are in danger of exfiltration. “Use the principle of least privilege on your AWS accounts and even disable the ability to transfer EIP entirely if you don’t need it,” it said.

Mitiga has published a detailed blog post about what they describe as Elastic IP Hijacking on its website. It notified the AWS security team about its findings before publishing, and incorporated the feedback it got as part of its post.





Read more on Cloud security

  • Amazon Elastic Container Service (Amazon ECS)

    DavidCarty

    By: David Carty

  • Use the AWS CLI to create an EC2 instance

    ErnestoMarquez

    By: Ernesto Marquez

    ADVERTISEMENT
  • How to create an EC2 instance from AWS Console

    ErnestoMarquez

    By: Ernesto Marquez

  • Amazon EC2 instance

    By: TechTarget Contributor

…. to be continued
Read the Original Article
Copyright for syndicated content belongs to the linked Source : Computer Weekly – https://www.computerweekly.com/news/252528592/Mitiga-researchers-disclose-AWS-Elastic-IP-hijacking-vulnerability

Tags: Mitigaresearchers

Denial of responsibility! tech-news.info is an automatic aggregator around the global media. All the content are available free on Internet. We have just arranged it in one platform for educational purpose only. In each content, the hyperlink to the primary source is specified. All trademarks belong to their rightful owners, all materials to their authors. If you are the owner of the content and do not want us to publish your materials on our website, please contact us by email – [email protected]. The content will be deleted within 24 hours.
Previous Post

Top 10 cyber security stories of 2022

Next Post

Top 10 women in tech and diversity in tech stories of 2022

RelatedPosts

iPhone 15 Pro design once again blamed for causing some units to overheat
Tech News

iPhone 15 Pro design once again blamed for causing some units to overheat

September 28, 2023
9to5Mac Daily: September 27, 2023 – macOS Sonoma released, Vision Pro roadmap changes
Tech News

9to5Mac Daily: September 27, 2023 – macOS Sonoma released, Vision Pro roadmap changes

September 28, 2023
iOS 17.1 brings Dynamic Island flashlight indicator to iPhone 14 Pro and iPhone 15
Tech News

iOS 17.1 brings Dynamic Island flashlight indicator to iPhone 14 Pro and iPhone 15

September 28, 2023
Apple TV+ playback glitch causing episodes to cut off ending, credits play first
Tech News

Apple TV+ playback glitch causing episodes to cut off ending, credits play first

September 28, 2023

Recommended.

  • All
  • Tech News
iPhone 15 Pro design once again blamed for causing some units to overheat

iPhone 15 Pro design once again blamed for causing some units to overheat

September 28, 2023
9to5Mac Daily: September 27, 2023 – macOS Sonoma released, Vision Pro roadmap changes

9to5Mac Daily: September 27, 2023 – macOS Sonoma released, Vision Pro roadmap changes

September 28, 2023
iOS 17.1 brings Dynamic Island flashlight indicator to iPhone 14 Pro and iPhone 15

iOS 17.1 brings Dynamic Island flashlight indicator to iPhone 14 Pro and iPhone 15

September 28, 2023
Apple TV+ playback glitch causing episodes to cut off ending, credits play first

Apple TV+ playback glitch causing episodes to cut off ending, credits play first

September 28, 2023
Apple Car development stalls with no release date in sight, Kuo says

Apple Car development stalls with no release date in sight, Kuo says

September 28, 2023
The Raspberry Pi 5 is here, and it comes with some huge improvements

The Raspberry Pi 5 is here, and it comes with some huge improvements

September 28, 2023

Tags

-Inch (68) amazon (166) Android (155) Announces (95) Apple (533) Apples (99) ChatGPT (101) China (71) Chinese (95) Deals (117) Digital (77) First (99) Galaxy (373) games (67) Gaming (117) Google (494) Googles (68) Heres (95) Huawei (91) Intel (68) iPhone (267) Launch (114) launches (199) Lenovo (93) Microsoft (245) Motorola (69) OnePlus (178) Phone (93) Pixel (166) price (94) Realme (111) Redmi (98) Review (236) Samsung (472) series (94) Smart (71) Tech News (428) Tesla (120) Twitter (163) unveils (98) Watch (165) Weekly (87) Windows (118) Xiaomi (206) YouTube (81)

Categories

Archives

September 2023
M T W T F S S
 123
45678910
11121314151617
18192021222324
252627282930  
« Aug    
© 2022 Tech-News.info
DMCA.com Protection Status
No Result
View All Result
  • Home 2

© 2022 Tech-News.info
DMCA.com Protection Status

This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Privacy and Cookie Policy.
error: Alert: Content selection is disabled!!
Go to mobile version

Mitiga researchers disclose AWS Elastic IP hijacking vulnerability- https://www.maquillages.info/   https://maquillages.org   https://www.deguisements-fetes.fr   https://maillots-de-bain-shop.com   https://www.le-noeud-papillon.com   https://www.jeepeg.fr   https://maillotde-bain.com   https://pushkarvisit.com   -/- According to Luke Fickell, Wisconsin is ‘all-in’ on NIL   Barbie film hits $1bn mark at global box office   Zhuhai Championships: Andy Murray loses to Aslan Karatsev in last 16   Breece Hall named Jets’ offensive X-factor for 2023   Soundking AK20 BA Amplificateur pour Basse   -*-$$DAKINE Split Roller Mallette ordinateur à roulettes, 21 cm, 110 L, Carbon   Veuve Clicquot – Coffret Retraite V.Clicquot Rose   Enceinte Mobile 700W Sono Active DJ KARAOKE 12″ Autonome Batterie à LED RVB + Micro VHF USB/SD/Bluetooth – LedWood Boostar1400   Volkswagen: IT-Störung bei Volkswagen behoben   Newcastle adds BetMGM UK to its bookmaker alliances   $$* Amalia   El Rancho Place d’Italie, Centre commercial Italie 2, place d’Italie 75013 Paris   Mitiga researchers disclose AWS Elastic IP hijacking vulnerability *Mitiga researchers disclose AWS Elastic IP hijacking vulnerability