CyberWire Daily
CyberWire Daily

A subtle flaw, a massive blast radius. [Research Saturday]

Mar 21, 2026 · 17m

Yuval Avrahami from Wiz joins to share their work on "CodeBreach: Infiltrating the AWS Console Supply Chain and Hijacking AWS GitHub Repositories via CodeBuild." Wiz Research uncovered “CodeBreach,” a critical supply chain vulnerability caused by a subtle misconfiguration in AWS CodeBuild pipelines that allowed attackers to take over key GitHub repositories, including the widely used AWS JavaScript SDK that powers the AWS Console. By exploiting an unanchored regex filter, unauthenticated attackers could trigger privileged builds, steal credentials, and potentially inject …

Questo episodio non è stato ancora trascritto

Usa STT.ai per trascrivere questo episodio con AI. Ottieni un testo accurato con rilevamento altoparlanti, timestamp ed esportazione in più formati.

Traduci questo episodio
Rilevamento diffusori Orari a livello di parola Esporta come SRT, TXT, JSON

Altri episodi

Anjali Hansen: Cross team collaboration works best. [Privacy Counsel] [Career Notes]
Apr 05, 2026 · 1m
Startup surge sparks spy interest. [Research Saturday]
Apr 04, 2026 · 19m
War comes for the cloud.
Apr 03, 2026 · 30m
The WhatsApp impostor.
Apr 02, 2026 · 30m
A war of missiles and messages.
Apr 01, 2026 · 30m
Water sector feels the pressure.
Mar 31, 2026 · 26m
Bringing it all together. [CISOP]
Mar 31, 2026 · 54m
Inbox intrusion hits FBI chief.
Mar 30, 2026 · 26m
David Nosibor: Taking calculated risks. [Product Lead] [Career Notes]
Mar 29, 2026 · 26m
CyberWire Daily at 10: The breaches we still talk about. [Special Edition]
Mar 29, 2026 · 28m