Kicking in the Door to the Cloud: Exploiting Cloud Provider Vulnerabilities for Initial Access
Unknown
Black Hat USA 2024 · Day 1 · Briefing
This Black Hat USA talk, titled "Kicking in the Door to the Cloud: Exploiting Cloud Provider Vulnerabilities for Initial Access," delves into novel and sophisticated methods for gaining initial access to Amazon Web Services (AWS) environments. Moving beyond the prevalent attack vectors such as leaked access keys, exposed S3 buckets, or compromised EC2 instances, the speaker explores how adversaries can directly exploit vulnerabilities within AWS services themselves. The core focus is on abusing pre-existing trust relationships that AWS services hold within customer accounts, transforming these trusted entities into tools for unauthorized access and privilege escalation.