1-Click Takeover Bug in AWS Apache Airflow Reveals Larger Risk
A bug exposed users of an AWS workflow management service to cookie tossing, but behind the scenes lies an even deeper issue that runs across all of the top cloud services.
https://www.darkreading.com/cloud-security/1-click-takeover-bug-aws-apache-airflow-risk