Researchers Uncover AWS SSM Agent Misuse as a Covert Remote Access Trojan

Aug 2, 2023

Cybersecurity researchers have discovered a new post-exploitation technique in Amazon Web Services (AWS) that allows the AWS Systems Manager Agent (SSM Agent) to be run as a remote access trojan on Windows and Linux environments
“The SSM agent, a legitimate tool used by admins to manage their instances, can be re-purposed by an attacker who has achieved high privilege access on an endpoint with

Get Free Report & Network Analysis

Please check your email for the free report.