"Researchers Sound Alarm Over Malicious AWS Community AMIs"

Security researchers at Mitiga have discovered that threat actors can easily build malware-laced Community Amazon Machine Images (AMI) and make them available to unsuspecting AWS customers.  The researchers released details of a malicious AMI  found in the wild running an infected instance of Windows Server 2008. The researchers said the AMI was removed from a customer’s Amazon Elastic Compute Cloud (EC2) instance earlier this month but is still available within Amazon’s Community AMI marketplace.  The AMI discovered was harboring a crypto miner, and was generating Monero coins for unknown hackers on a financial institution’s EC2 for the past five years.

Threatpost reports: "Researchers Sound Alarm Over Malicious AWS Community AMIs"