威胁组织UNC6426通过利用nx npm包供应链攻击窃取的密钥，在72小时内完全入侵受害者的云环境。攻击从窃取开发者GitHub令牌开始，攻击者随后利用GitHub到AWS的OIDC信任关系创建新的管理员角色。他们滥用该角色从AWS S3存储桶中窃取文件，并在生产云环境中进行数据破坏。

Hackers exploited a compromised npm package to breach cloud systems and gain full AWS administrator access within 72 hours.

UNC6426 used stolen GitHub tokens from the 2025 nx npm breach to gain AWS admin access in under 72 hours, enabling data theft and cloud destruction.

Terra Security, a pioneer in Agentic Offensive Security, announced today the appointment of Anna Sarnek as Vice President of Business & Strategy. Sarnek has served as a strategic advisor to Terra over ...