Summary: Hackers were able to obtain AWS credentials from GitHub within 5 minutes, using automated scanners to clone and retrieve exposed credentials. They targeted the mining of Monero and used Amazon EC2 instances for cryptojacking activities. The threat actors also exploited loopholes in GitHub's secret scanning feature and AWS Compromised Key Quarantine Policy.
Hashtags: #AWScredentials #GitHub #cryptojacking #Monero #cybersecurity