https://community.isc2.org/t5/Cloud-Security/Threat-Actors-Can-Leverage-AWS-STS-to-Infiltrate-Cloud-Accounts/m-p/65209#M380 Well, we do have service providers and identity providers separated for some reason in all the pretty architecture pictures… <span class="lia-unicode-emoji" title=":face_with_tongue:">😛</span><BR /><BR />Though in fairness to Amazon this looks like you have to audit account use, have proper procedures and watch for the little credential squirrels wheresoever they may be. Fri, 08 Dec 2023 09:20:11 GMT Early_Adopter 2023-12-08T09:20:11Z https://community.isc2.org/t5/Cloud-Security/Threat-Actors-Can-Leverage-AWS-STS-to-Infiltrate-Cloud-Accounts/m-p/65200#M378 <P>Hi All</P><P>&nbsp;</P><P>It appears that AWS Security Token Service (STS) has issues, so read this explanation and take action:</P><P>&nbsp;</P><P><A href="https://thehackernews.com/2023/12/alert-threat-actors-can-leverage-aws.html" target="_blank" rel="noopener">https://thehackernews.com/2023/12/alert-threat-actors-can-leverage-aws.html</A></P><P>&nbsp;</P><P>Regards</P><P>&nbsp;</P><P>Caute_Cautim</P> Thu, 07 Dec 2023 19:54:49 GMT https://community.isc2.org/t5/Cloud-Security/Threat-Actors-Can-Leverage-AWS-STS-to-Infiltrate-Cloud-Accounts/m-p/65200#M378 Caute_cautim 2023-12-07T19:54:49Z https://community.isc2.org/t5/Cloud-Security/Threat-Actors-Can-Leverage-AWS-STS-to-Infiltrate-Cloud-Accounts/m-p/65209#M380 Well, we do have service providers and identity providers separated for some reason in all the pretty architecture pictures… <span class="lia-unicode-emoji" title=":face_with_tongue:">😛</span><BR /><BR />Though in fairness to Amazon this looks like you have to audit account use, have proper procedures and watch for the little credential squirrels wheresoever they may be. Fri, 08 Dec 2023 09:20:11 GMT https://community.isc2.org/t5/Cloud-Security/Threat-Actors-Can-Leverage-AWS-STS-to-Infiltrate-Cloud-Accounts/m-p/65209#M380 Early_Adopter 2023-12-08T09:20:11Z