CodeBreach - Vulnerability

Threat entity extracted from intelligence sources

Frequency
5
occurrences
First Seen
January 15, 2026
Last Seen
March 11, 2026

CodeBreach is a vulnerability tracked across 4 threat clusters and 5 intelligence report mentions on ThreatCluster. First observed January 15, 2026; most recent activity March 11, 2026.

Related Threat Clusters

  • AWS Console Vulnerability Exposed to Supply Chain Attack

    A critical vulnerability known as CodeBreach was identified in the AWS Console, allowing potential attackers to take control of core AWS GitHub repositories, including the AWS JavaScript SDK. This misconfiguration in…

    7 articles · Updated January 15, 2026
  • AWS CodeBuild Misconfiguration Exposes Global Cloud Environments

    A critical misconfiguration in AWS's CodeBuild service allowed complete takeover of AWS's GitHub repositories, affecting every AWS environment worldwide. Wiz security researchers disclosed the issue to AWS in August…

    2 articles · Updated January 15, 2026
  • Regex Flaw Exposes AWS GitHub Repos to Supply-Chain Risk

    AWS has acknowledged a critical vulnerability, dubbed CodeBreach, affecting some of its open-source GitHub repositories. This flaw, identified by Wiz Security's research team, could have allowed the introduction of…

    1 article · Updated January 25, 2026
  • Google Completes $32 Billion Acquisition of Cybersecurity Firm Wiz

    Google has finalized its acquisition of Wiz, an Israeli cybersecurity firm, for $32 billion, marking the largest tech deal in Israel's history. The acquisition, announced on March 11, 2026, allows Google to enhance its…

    17 articles · Updated March 11, 2026

Recent Intelligence Reports

  • Google Finalizes $32B Acquisition of Wiz to Strengthen Cloud and AI Security — Nationalcioreview · March 11, 2026
  • Two Missing Characters: How a Regex Flaw Exposed AWS GitHub Repos to Supply — Infoq · January 25, 2026
  • Supply Chain Vuln Compromised Core AWS GitHub Repos & Threatened the AWS Console — News.Ycombinator · January 15, 2026
  • Critical flaw in AWS Console risked compromise of build environment — Cybersecuritydive · January 15, 2026
  • A simple CodeBuild flaw put every AWS environment at risk — Theregister · January 15, 2026

CVSS v3.1 Breakdown