AWS Lambda — Cyber Threats, Attacks & Incidents

Threat entity extracted from intelligence sources

Frequency
14
occurrences
First Seen
December 12, 2025
Last Seen
July 6, 2026

AWS Lambda is a technology platform tracked across 11 threat clusters and 14 intelligence report mentions on ThreatCluster. First observed December 12, 2025; most recent activity July 6, 2026.

Related Threat Clusters

  • FBI Warns of Kali365 Phishing Kit Targeting Microsoft 365 Users

    The FBI has issued a warning regarding the Kali365 phishing kit, which is actively stealing Microsoft OAuth tokens and bypassing multi-factor authentication (MFA) protocols. First identified in April 2026, Kali365 is…

    126 articles · Updated May 22, 2026
  • Critical Vulnerability in MCP Protocol Exposes 200,000 AI Servers to Remote Code Execution

    A report by OX Security has identified a critical vulnerability in the Model Context Protocol (MCP) developed by Anthropic, potentially exposing over 200,000 AI servers to remote code execution. The flaw lies in the…

    12 articles · Updated April 16, 2026
  • Zapier Exploit Chain Grants Unauthorized NPM Access

    Researchers at Token Security disclosed a five-stage exploit chain that allowed a free Zapier account to gain write access to both public and internal NPM packages. Each stage of the chain exploited known anti-patterns,…

    8 articles · Updated May 28, 2026
  • Risks of Privilege Abuse in Multi-Agent AI Systems Highlighted

    Multi-agent AI systems are vulnerable to privilege abuse when agents delegate tasks across complex chains. This risk, classified by OWASP as Identity & Privilege Abuse, can lead to agents exceeding their original…

    2 articles · Updated July 6, 2026
  • AI-Driven Cyber Threats Challenge Enterprise Security Models

    Organizations are facing an evolving security landscape where advanced cyber threats leverage artificial intelligence to exploit vulnerabilities and automate attacks. Traditional security measures are inadequate as…

    2 articles · Updated February 19, 2026
  • Zafran Launches Threat Exposure Management Platform on AWS

    Zafran has introduced a threat exposure management platform on AWS, emphasizing the need for continuous threat exposure management (CTEM) in vulnerability management. This platform leverages AI-powered approaches and…

    2 articles · Updated February 6, 2026
  • AI-Driven AWS Intrusion Achieves Admin Access in 8 Minutes

    On November 28, 2025, a cyberattack on Amazon Web Services (AWS) allowed an attacker to gain full administrative access in just eight minutes. The attack exploited valid test credentials found in public S3 buckets,…

    12 articles · Updated February 3, 2026
  • Standardization of Security Logs with OCSF Framework

    The Open Cybersecurity Schema Framework (OCSF) aims to standardize security logs across various systems, enhancing interoperability and simplifying compliance reporting. Amazon Security Lake has introduced an ETL…

    2 articles · Updated April 17, 2026
  • Intruder Enhances Cloud Security with Agentless Container Image Scanning

    Intruder has launched a new feature called Container Image Scanning, which automatically scans container images for vulnerabilities. This upgrade allows users to gain actionable insights into container risks without the…

    3 articles · Updated April 9, 2026
  • AWS IAM Credential Theft Fuels Ongoing Crypto Mining Campaign

    A sophisticated cryptocurrency mining campaign targeting AWS customers began on November 2, 2025, using compromised AWS Identity and Access Management (IAM) credentials. The attackers exploited Amazon Elastic Container…

    5 articles · Updated December 17, 2025

Recent Intelligence Reports

  • Enforce least-privilege authorization in multi — Aws.Amazon · July 6, 2026
  • 5222742 — www.theregister.com · June 15, 2026
  • With Complex Cloud Integrations, Small Errors Lead to Major Compromises — Darkreading · May 29, 2026
  • Transform security logs into OCSF format using a configuration — Aws.Amazon · April 17, 2026
  • RCE by design: MCP architectural choice haunts AI agent ecosystem — Csoonline · April 16, 2026
  • Intruder adds container image scanning to cloud platform — Securitybrief.Au · April 10, 2026
  • Building an AI-powered defense-in — Aws.Amazon · February 16, 2026
  • Transform CTEM with Zafran's threat exposure management platform on AWS — Aws.Amazon · February 6, 2026

CVSS v3.1 Breakdown