← All stories

Bleeping Computer

Researchers report Amazon SES abused in phishing to evade detection

Bill Toulas · 2 days ago · Read original ↗

ATT&CK techniques detected

5 predictions

T1566.002Spearphishing Link

94%

"researchers report amazon ses abused in phishing to evade detection cybersecurity firm kaspersky reports that the amazon simple email service ( ses ) is being increasingly abused to send convincing phishing emails that can bypass standard security filters and render reputation - …"

Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.

No matches for .

Loading techniques…

T1566.002Spearphishing Link

78%

"bots built on the open - source trufflehog utility, which is designed to scan for leaked secrets. threat actors now rely on automated attacks that streamline secret scanning, permission validation, and email distribution, enabling unprecedented levels of abuse. “ after verifying …"

Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.

No matches for .

Loading techniques…

T1566.001Spearphishing Attachment

50%

"bots built on the open - source trufflehog utility, which is designed to scan for leaked secrets. threat actors now rely on automated attacks that streamline secret scanning, permission validation, and email distribution, enabling unprecedented levels of abuse. “ after verifying …"

Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.

No matches for .

Loading techniques…

T1598.002Spearphishing Attachment

40%

"bots built on the open - source trufflehog utility, which is designed to scan for leaked secrets. threat actors now rely on automated attacks that streamline secret scanning, permission validation, and email distribution, enabling unprecedented levels of abuse. “ after verifying …"

Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.

No matches for .

Loading techniques…

T1566Phishing

30%

"bots built on the open - source trufflehog utility, which is designed to scan for leaked secrets. threat actors now rely on automated attacks that streamline secret scanning, permission validation, and email distribution, enabling unprecedented levels of abuse. “ after verifying …"

Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.

No matches for .

Loading techniques…

Summary

Cybersecurity firm Kaspersky reports that the Amazon Simple Email Service (SES) is being increasingly abused to send convincing phishing emails that can bypass standard security filters and render reputation-based blocks ineffective. [...]