@yakirkad : TL;DR: We found that default IAM roles in AWS services like SageMaker, Glue, and EMR granted overly broad permissions—such as full S3 access. These roles could be abused to escalate privileges, pivot between services, and even gain admin access. AWS has issued fixes and scoped • TwiCopy

Yakir Kadkoda

@yakirkad

+ Follow

🧩 Director of Security Research at @AquaSecTeam | Black Hat & DEFCON & RSA Speaker

ID: 1469759292798603266

calendar_today11-12-2021 20:01:47

143 Tweet

234 Takipçi

537 Takip Edilen

Yakir Kadkoda

@yakirkad

3 months ago

TL;DR: We found that default IAM roles in AWS services like SageMaker, Glue, and EMR granted overly broad permissions—such as full S3 access. These roles could be abused to escalate privileges, pivot between services, and even gain admin access. AWS has issued fixes and scoped

thumb_up_off_alt5

chat_bubble_outline0

repeat0

shareShare