CyberWire Daily

A subtle flaw, a massive blast radius. [Research Saturday]

Mar 21, 2026 · 17m

Yuval Avrahami from Wiz joins to share their work on "CodeBreach: Infiltrating the AWS Console Supply Chain and Hijacking AWS GitHub Repositories via CodeBuild." Wiz Research uncovered “CodeBreach,” a critical supply chain vulnerability caused by a subtle misconfiguration in AWS CodeBuild pipelines that allowed attackers to take over key GitHub repositories, including the widely used AWS JavaScript SDK that powers the AWS Console. By exploiting an unanchored regex filter, unauthenticated attackers could trigger privileged builds, steal credentials, and potentially inject …

ʻAʻole i kākau ʻia kēia ʻanuʻu

Hoʻohana i STT.ai e hoʻololi i kēia ʻāpana me AI. E loaʻa i ka huaʻōlelo pololei me ka ʻike ʻana i ka mea kākau, nā manawa, a me ka hoʻouna ʻana i nā ʻano like ʻole.

Hoʻouka i kēia wikiō

Ka hōʻike leo Ka manawa o ka pae hua'ōlelo Hoʻouna i ka SRT, TXT, JSON

He nui aku nā hōʻike

Anjali Hansen: Cross team collaboration works best. [Privacy Counsel] [Career Notes]

Apr 05, 2026 · 1m

A subtle flaw, a massive blast radius. [Research Saturday]

ʻAʻole i kākau ʻia kēia ʻanuʻu

He nui aku nā hōʻike

Anjali Hansen: Cross team collaboration works best. [Privacy Counsel] [Career Notes]

Startup surge sparks spy interest. [Research Saturday]

War comes for the cloud.

The WhatsApp impostor.

A war of missiles and messages.

Water sector feels the pressure.

Bringing it all together. [CISOP]

Inbox intrusion hits FBI chief.

David Nosibor: Taking calculated risks. [Product Lead] [Career Notes]

CyberWire Daily at 10: The breaches we still talk about. [Special Edition]