The Duckbill Group is a organization tracked across 1 threat cluster and 1 intelligence report mention on ThreatCluster. First observed January 25, 2026; most recent activity January 25, 2026.
The Duckbill Group is a cloud consulting firm specializing in AWS, known for cost optimization, security guidance, and engineering services. The company frequently publishes research and best-practice analyses on cloud security, governance, and operational risks. Its work is considered influential in AWS ecosystem security discussions and threat modeling.
AWS has acknowledged a critical vulnerability, dubbed CodeBreach, affecting some of its open-source GitHub repositories. This flaw, identified by Wiz Security's research team, could have allowed the introduction of…