amazon Archives - Gridinsoft Blogs

Security News

Amazon Patch for Log4Shell allowed privilege escalation

ByVladimir KrasnogolovyApril 22, 2022

Palo Alto Networks warns that a patch released by Amazon to protect AWS from high-profile issues in Apache Log4j, including the Log4Shell vulnerability, poses a threat to users. The patch can be used to escape the container and escalate privileges, allowing an attacker to

Security News

Vulnerabilities in Amazon Kindle Allowed Taking Full Control of the Device

ByVladimir KrasnogolovyAugust 6, 2021

Check Point researchers reported that in April of this year, IT giant Amazon eliminated critical vulnerabilities in the Amazon Kindle. The problems could be used to gain full control over the device, allowed them to steal the Amazon device token and other confidential data

Security News

Operators of phishing campaigns increased number of emails allegedly from delivery services

ByVladimir KrasnogolovyDecember 2, 2020

Check Point Research reports that in November, the number of phishing emails written on behalf of delivery services increased by 440% compared to October. The sharpest growth was noted in Europe, with North America and the Asia-Pacific region in second and third places

Security News

Vulnerabilities in Amazon Alexa opened access to user data for outsiders

ByVladimir KrasnogolovyAugust 17, 2020

In June this year, researchers from Check Point discovered a number of dangerous vulnerabilities that opened for attacks the Amazon Alexa virtual assistant and its users. The problem was in CORS and XSS bugs, which affected several Amazon subdomains, and in configuration

Security News

Mandrake malware was hiding on Google Play for more than four years

ByVladimir KrasnogolovyMay 15, 2020

Bitdefender experts found Mandrake spyware in the official Android app store, hiding on Google Play for four years (since 2016). The malware established full control over infected devices, collected credentials, GPS from infected devices, made screen recordings, and so on.