Analyst2071d ago

Vulnerabilities Exposed in Amazon Bedrock AgentCore Sandbox

Security researchers at Unit 42 have uncovered critical vulnerabilities in Amazon Bedrock AgentCore's sandbox, revealing that a protective layer meant to separate code and services can be breached using DNS tunneling, exposing sensitive credentials in the process. This alarming discovery highlights the potential risks of slipping…

https://osintsights.com/vulnerabilities-exposed-in-amazon-bedrock-agentcore-sandbox

#AmazonBedrock #Agentcore #SandboxEscape #DnsTunneling #CredentialExposure

Vulnerabilities Exposed in Amazon Bedrock AgentCore Sandbox

Learn how security researchers exploited Amazon Bedrock AgentCore's sandbox using DNS tunneling, exposing credentials, and find out what you can do to protect yourself now.

OSINTSights
Show threadJonathan Kamens 86 47Apr 15, 2025
P.S. I noticed one error in the article: the description of DNS tunneling is wrong. When someone is using DNS tunneling to exfiltrate data, they're generating the DNS queries with the data in them from inside the network, causing them to be sent to a DNS server under their control outside the network. It's not the server generating the queries as described in the article.
I didn't notice any other substantive errors in the article.
#infosec #DNSTunneling
FulcoMay 21, 2024

Discover the hidden dangers of DNS tunneling and how it can covertly compromise your network security.

Stay informed and protect your organization with our in-depth intelligence briefing.

#CyberSecurity #DNSTunneling #ThreatAnalysis

https://fulco.net/fulco%E2%80%99s-notes/f/intelligence-briefing-dns-tunneling

Intelligence Briefing: DNS Tunneling

DNS tunneling is an insidious cyber threat that exploits the Domain Name System (DNS) protocol to establish covert channels for command and control (C2) communication and data exfiltration. Often overlooked by traditiona...

Fulco’s Notes
Show thread[email protected]May 13, 2024
@BleepingComputer
„Additionally, it's advisable to limit the DNS resolvers in the network to handle only the **necessary** queries, reducing the potential of DNS tunneling misuse.“
What do you mean by this?
#DNSTunneling
0xberserkrDec 20, 2023
Data Exfiltration - I have just completed this room! Check it out: https://tryhackme.com/room/dataxexfilt #tryhackme #DNSexfiltration #ICMPexfiltration #DNSTunneling #HTTPTunneling #DataExfiltration #dataxexfilt via @RealTryHackMe
TryHackMe | Cyber Security Training

TryHackMe is a free online platform for learning cyber security, using hands-on exercises and labs, all through your browser!

TryHackMe
Show threadMike | Raymond TecOct 19, 2023

Fascinating study by Palo Alto about weaponizing DNS.

https://unit42.paloaltonetworks.com/dns-tunneling-in-the-wild/

#HideYoWifeHideYoQueries #DNSTunneling #DNS #InfoSec

Understanding DNS Tunneling Traffic in the Wild

We present our findings on DNS tunneling techniques found in the wild, using extensive data on why this method is selected for malware campaigns.

Unit 42