Server-Side Request Forgery

Security
Tech News

Hackers target SSRF bugs in EC2-hosted sites to steal AWS credentials

April 15, 2025April 15, 2025 geekfeed0Tagged Actively Exploited, amazon, AWS, credentials, Server-Side Request Forgery, SSRF, Website

A targeted campaign exploited Server-Side Request Forgery (SSRF) vulnerabilities in websites hosted on AWS EC2 instances to extract EC2 Metadata, which could include Identity and Access Management (IAM) credentials from the IMDSv1 endpoint. Retrieving IAM credentials allows attackers to escalate their privileges and access S3 buckets or control other AWS services, potentially leading to sensitive data exposure, […]

2 mins read