Hackers Exploit AWS Misconfigurations for Phishing Campaigns

Malicious actors are targeting Amazon Web Services (AWS) environments to launch phishing campaigns, according to findings from Palo Alto Networks Unit 42. The cybercriminal group, identified as TGR-UNK-0011, overlaps with a known group called JavaGhost. TGR-UNK-0011 exploits misconfigurations in AWS to send phishing emails via Simple Email Service (SES) and WorkMail. The technical details and real impacts of these attacks are not specified in the article.