Critical AWS Supply Chain Vulnerability Exposed GitHub Repos and Threatened AWS Console

Researchers from Wiz discovered a vulnerability in AWS CodeBuild, dubbed CodeBreach, which allowed attackers to access AWS's internal GitHub repositories and inject malicious code. This flaw exposed critical components, including elements linked to the AWS Console. The vulnerability exploited misconfigured permissions and access tokens in build projects. AWS patched the issue after being alerted.