"AWS SNS Hijackings Fuel Cloud Smishing Campaign"

Threat actors are using Amazon Web Services Simple Notification Service (AWS SNS) and a custom bulk-messaging spam script called SNS Sender in an ongoing "smishing" campaign that impersonates the US Postal Service. Like businesses, threat actors are moving their workloads to the cloud instead of handling them through traditional web servers. This shift poses a significant business risk to organizations whose legitimate cloud instances have been compromised by attackers trying to piggyback on their AWS capabilities. This article continues to discuss the smishing campaign involving the abuse of AWS SNS.

Dark Reading reports "AWS SNS Hijackings Fuel Cloud Smishing Campaign"

Submitted by grigby1