AWS users could have their cryptographic keys stolen thanks to new vulnerability

Sooraj Shah
clock • 3 min read

Researchers used one instance of Amazon EC2 to recover a whole 2048-bit RSA key used by a separate instance

A team of researchers claim attackers can exploit a vulnerability on Amazon's EC2 cloud storage platform in order to steal the cryptographic keys of other users. The researchers from Worcester P...

To continue reading this article...

Join Computing

  • Unlimited access to real-time news, analysis and opinion from the technology industry
  • Receive important and breaking news in our daily newsletter
  • Be the first to hear about our events and awards programmes
  • Join live member only interviews with IT leaders at the ‘IT Lounge’; your chance to ask your burning tech questions and have them answered
  • Access to the Computing Delta hub providing market intelligence and research
  • Receive our members-only newsletter with exclusive opinion pieces from senior IT Leaders

Join now

 

Already a Computing member?

Login

You may also like
Lock-in secrets of the hyperscalers, according to Civo

Cloud Computing

All cloud providers are not equal when it comes to winning contracts, according to Mark Boost, CEO of UK cloud provider Civo.

clock 16 February 2024 • 3 min read
Encryption backdoors violate human rights, says EU court

Privacy

Implications for EU's own efforts to regulate encryption

clock 16 February 2024 • 3 min read
Google Cloud abolishes egress fees

Cloud Computing

Paves the way for cloud exits

clock 14 January 2024 • 2 min read
Most read
01

Cyber incident disrupts another UK university

25 February 2024 • 2 min read
02
04

Avast faces fine for tracking and selling user data

25 February 2024 • 2 min read
05

Cambridge University hit by DDoS attack

20 February 2024 • 1 min read

Sign up to our newsletter

The best news, stories, features and photos from the day in one perfectly formed email.

More on Threats and Risks

LockBit re-emerges a week after takedown

LockBit re-emerges a week after takedown

'Damage control for the LockBit brand, a show of strength'

John Leonard
clock 26 February 2024 • 2 min read
Massive data leak exposes Chinese infosec vendor's cyberattacks-for-hire

Massive data leak exposes Chinese infosec vendor's cyberattacks-for-hire

Documents outline the use of hardware hacking devices, including a malicious power bank designed to surreptitiously upload data into victims' systems

clock 23 February 2024 • 3 min read
Operation Cronos: NCA reveals details of LockBit affiliates

Operation Cronos: NCA reveals details of LockBit affiliates

Operation has been crippled - for now

clock 22 February 2024 • 3 min read