Home > Security > Security News

AI-Assisted Cloud Intrusion Compromises AWS Environment in 8 Minutes, Highlights New Cloud Security Threats

Published
Written by:
Lore Apostol
Lore Apostol
Cybersecurity Writer
Amazon Cloud - Robot
Summarize with:
ChatGPT logo ChatGPT Claude.ai logo Claude.ai Google AI logo Google AI Grok logo Grok Perplexity logo Perplexity
Google logo Add as preferred source on Google
Key Takeaways
  • Rapid Escalation: Sysdig observed a threat actor escalate from initial access to administrative privileges in an AWS environment in under 10 minutes.
  • AI-Driven Tactics: The operation showed strong evidence of being AI-assisted, leveraging LLMs for reconnaissance, code generation, and real-time decision-making.
  • Attack Vectors: Key vectors involved stolen public S3 bucket credentials, Lambda code injection privilege escalation, and lateral movement across 19 unique AWS principals.

A sophisticated AI-assisted cloud intrusion was observed on November 28, 2025, in which an attacker gained full administrative access to an AWS account in eight minutes. The attack began with the threat actor using valid test credentials in public S3 buckets that contained Retrieval-Augmented Generation (RAG) data.

This initial access provided permissions to AWS Lambda, which became the central vector for privilege escalation. 

From Lambda Injection to GPU Abuse

The Sysdig Threat Research Team (TRT) has detailed that after gaining initial access, the threat actor conducted rapid reconnaissance across multiple AWS and AI services before pivoting to Lambda code injection. 

Timeline reconstructing the complete two-hour attack sequence, based on CloudTrail analysis | Source: Sysdig
Timeline reconstructing the complete two-hour attack sequence, based on CloudTrail analysis | Source: Sysdig

By replacing the code of an existing Lambda function with an administrative execution role, the attacker created new access keys for an admin-level user. This technique granted them the permissions needed to move laterally, ultimately compromising 19 AWS principals across 14 sessions, using six assumed IAM roles. 

The speed and efficiency of the operation, along with specific artifacts like code generated by large language models (LLMs) with Serbian comments, strongly indicate the use of AI to automate and accelerate the attack chain.

The actor then engaged in LLMjacking by invoking multiple Amazon Bedrock models and attempted to provision a high-performance, P5 GPU instance for resource abuse, demonstrating a clear intent to exploit cloud AI and high-performance computing (HPC) applications.

After verifying that logging was disabled, the threat actor invoked multiple AI models:

The affected S3 buckets were named using common AI tool naming conventions, which the attackers actively searched for during reconnaissance,” the report said.

Improving Cloud Cybersecurity Defenses

The uploaded data includes a remote access component, allowing the threat actor to reconnect to the instance via JupyterLab even if their AWS credentials are revoked, the report said. Sysdig recommends:

Organizations must immediately shift to using IAM roles with temporary credentials, or they will continue to fall victim to these preventable breaches,” said Jason Soroko, Senior Fellow at Sectigo.

Detecting and defusing AI attacks in real-time demands AI-focused technology,” said Ram Varadarajan, CEO at Acalvio. “AI-powered threat detection and response can flag and shut down malicious behavior in real time,” added Shane Barney, CISO at Keeper Security.

These defensive measures are essential to counter the accelerating threat of automated, AI-driven attacks. In other recent news, state-aligned actors exploit unrest with the RedKitten AI-accelerated campaign targeting Iranian protests.

Add a Comment
Related
AI - Confused - Robot - Text - Image - Context - Question
DockerDash Ask Gordon AI Vulnerability Exposes Supply Chain Risks as Meta-Context Injection Compromises AI Integrity
Notepad++ Hijacking Incident Deploying Backdoor, Linked to Lotus Blossom Group Campaign
NSO Group VS WhatApp
Spyware Vendor’s Pall Mall Claims Trigger Civil Society Backlash
Cyber Job Moves: New Appointments Across Threat Intelligence, Identity, and Critical Infrastructure
Alleged Data Breach Targets Spain’s Ministry of Science, Innovation, and Universities
Protest - Excel - Persian Text
State-Aligned Actors Exploit Unrest with RedKitten AI-Accelerated Campaign Targeting Iranian Protests
Most Popular
AI - Confused - Robot - Text - Image - Context - Question
DockerDash Ask Gordon AI Vulnerability Exposes Supply Chain Risks as Meta-Context Injection Compromises AI Integrity
Notepad++ Hijacking Incident Deploying Backdoor, Linked to Lotus Blossom Group Campaign
NSO Group VS WhatApp
Spyware Vendor’s Pall Mall Claims Trigger Civil Society Backlash
Cyber Job Moves: New Appointments Across Threat Intelligence, Identity, and Critical Infrastructure
Alleged Data Breach Targets Spain’s Ministry of Science, Innovation, and Universities
Protest - Excel - Persian Text
State-Aligned Actors Exploit Unrest with RedKitten AI-Accelerated Campaign Targeting Iranian Protests
DockerDash Ask Gordon AI Vulnerability Exposes Supply Chain Risks as Meta-Context Injection Compromises AI Integrity
Notepad++ Hijacking Incident Deploying Backdoor, Linked to Lotus Blossom Group Campaign
Spyware Vendor’s Pall Mall Claims Trigger Civil Society Backlash
Cyber Job Moves: New Appointments Across Threat Intelligence, Identity, and Critical Infrastructure
Alleged Data Breach Targets Spain’s Ministry of Science, Innovation, and Universities
State-Aligned Actors Exploit Unrest with RedKitten AI-Accelerated Campaign Targeting Iranian Protests

Most Popular
AI - Confused - Robot - Text - Image - Context - Question
DockerDash Ask Gordon AI Vulnerability Exposes Supply Chain Risks as Meta-Context Injection Compromises AI Integrity
Notepad++ Hijacking Incident Deploying Backdoor, Linked to Lotus Blossom Group Campaign
NSO Group VS WhatApp
Spyware Vendor’s Pall Mall Claims Trigger Civil Society Backlash
Cyber Job Moves: New Appointments Across Threat Intelligence, Identity, and Critical Infrastructure
Alleged Data Breach Targets Spain’s Ministry of Science, Innovation, and Universities
Protest - Excel - Persian Text
State-Aligned Actors Exploit Unrest with RedKitten AI-Accelerated Campaign Targeting Iranian Protests
DockerDash Ask Gordon AI Vulnerability Exposes Supply Chain Risks as Meta-Context Injection Compromises AI Integrity
Notepad++ Hijacking Incident Deploying Backdoor, Linked to Lotus Blossom Group Campaign
Spyware Vendor’s Pall Mall Claims Trigger Civil Society Backlash
Cyber Job Moves: New Appointments Across Threat Intelligence, Identity, and Critical Infrastructure
Alleged Data Breach Targets Spain’s Ministry of Science, Innovation, and Universities
State-Aligned Actors Exploit Unrest with RedKitten AI-Accelerated Campaign Targeting Iranian Protests

TechNadu keeps you informed with the latest in cybersecurity, VPNs, and technology. From expert guides to in-depth reviews, we provide the knowledge you need to stay secure and connected in the digital world.

© 2026 TechNadu. All Rights Reserved. TechNadu is a part of Leaprove Media LLP.

Close lightbox
Facebook
Twitter
Linkedin
Reddit
Email
Copy Link
For a better user experience we recommend using a more modern browser. We support the latest version of the following browsers: For a better user experience we recommend using the latest version of the following browsers: