thearabianpost

AWS CodeBuild flaw exposes software supply chain risk

A critical security weakness in Amazon Web Services’ CodeBuild service left GitHub repositories vulnerable to hijacking, raising fresh concerns about the resilience of cloud-based development ...
GitHub

AWS SDK Python Signers

This repository is no longer maintained. The project has been moved to Smithy Python where you can find the latest releases of aws-sdk-signers. AWS SDK Python Signers provides stand-alone signing ...
GitHub

aws-geospatial/amazon-location-mobile-auth-sdk-android

These utilities help you authenticate when making Amazon Location Service API calls from your Android applications. This specifically helps when using Amazon Cognito as the authentication method. This ...
The Hacker News

The Hacker News | #1 Trusted Source for Cybersecurity News — Index Page

A threat actor likely aligned with China has been observed targeting critical infrastructure sectors in North America since at least last year. Cisco Talos, which is tracking the activity under the ...
cybernews

AWS dodges massive cyber disaster: every account was in danger

Cybersecurity researchers at Wiz Research managed to gain admin access to key AWS GitHub repositories. The disclosed critical bug could've had massive repercussions, potentially threatening “The AWS ...
The Hacker News

AWS CodeBuild Misconfiguration Exposed GitHub Repos to Potential Supply Chain Attacks

A misconfigured AWS CodeBuild webhook allowed bypass of actor ID checks, risking takeover of four AWS GitHub repositories before fixes in Sep 2025.
InfoWorld

Possible software supply chain attack through AWS CodeBuild service blunted

An AWS misconfiguration in its code building service could have led to a massive number of compromised key AWS GitHub code repositories and applications, say researchers at Wiz who discovered the ...