Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
New 'whoAMI' Attack Enables Code Execution on Amazon EC2 Instances
Malware and Vulnerabilities
February 14, 2025
Bleeping Computer
Dubbed "whoAMI," the attack was crafted by DataDog researchers in August 2024, who demonstrated that it's possible for attackers to gain code execution within AWS accounts by exploiting how software projects retrieve AMI IDs.
Read More
whoami
Name Confusion Attack
Amazon Web Services (AWS)
Amazon Machine Image (AMI)
Code Execution Exploit
Publisher
Previous
North Korean APT43 Uses PowerShell and Dropbox in Targe ...
Threat Actors
Next
Hackers Use CAPTCHA Trick on Webflow CDN PDFs to Bypass ...
Identity Theft, Fraud, Scams
/https://cyware-ent.s3.amazonaws.com/image_bank/iStock_91544597_MEDIUM.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/b7bf_shutterstock_1285016485.jpg)
