A bug exposed users of an AWS workflow management service to cookie tossing. Behind the scenes lies an even deeper issue across all of the top cloud services.

DR (DZone Research) offers insights into software development trends, industry surveys, and technology adoption patterns, providing reports, whitepapers, and analyst insights to help businesses make informed decisions and stay competitive in the ever-evolving tech landscape. By exploring DR's curated content, developers can gain insights into emerging technologies, developer preferences, and industry best practices for building innovative and market-leading software solutions. Whether you're a startup founder, product manager, or tech executive, DR offers resources to guide your strategic planning and drive business success.

Dark Reading

A bug in AWS Apache Airflow allowed hackers to hijack sessions and perform remote code execution. The bug is a manifestation of a larger misconfiguration issue common to AWS, Microsoft Azure, and Google Cloud. The fix for this issue involves restructuring domain architecture or adding domains to the Public Suffix List (PSL).

1-Click Takeover Bug in AWS Apache Airflow Reveals Larger Risk