Lightspin

Lightspin Security Research Team Reveals AWS Identity and Access Management Vulnerable to Abuse

Lightspin announced the results of its research, which discovered a gap between AWS Identity and Access Management user and group policies that an attacker can abuse to take over accounts, delete group members, steal data and shut down services. The research team was able to compromise dozens of accounts by using this technique. Lightspin researchers discovered that many security administrators were unaware that AWS IAM rules do not work the same way as Azure Active Directory or other authorization mechanisms.