The Hacker News

Hackers Exploit Pandoc CVE-2025-51591 to Target AWS IMDS and Steal EC2 IAM Credentials

The vulnerability in question is CVE-2025-51591 (CVSS score: 6.5), which refers to a case of Server-Side Request Forgery ...
CRN

Hackers Target AWS IMDS And EC2 To Steal Credentials: Wiz Report

AWS security vulnerability exploited by threat actors with hackers stealing credentials via AWS IMDS through EC2 instances, ...
SecurityWeek

Salesforce AI Hack Enabled CRM Data Theft

Prompt injection has been leveraged alongside an expired domain to steal Salesforce data in an attack named ForcedLeak.