Release Date: 04/01/2026 | Issue: 319
Know someone who'd find this useful? Forward this email
CloudSecList is a newsletter for busy professionals who want to keep up to date with the cloud security industry. Hand-curated by Marco Lancini.

This week's articles


ConsentFix: Browser-native ClickFix hijacks OAuth grants
Analysing "ConsentFix", a new browser-native attack technique detected in the wild, combining OAuth consent phishing with a ClickFix-style user prompt.   #attack   #saas


Modernizing LinkedIn’s Static Application Security Testing Capabilities to protect our members
LinkedIn has modernized its Static Application Security Testing (SAST) capabilities to enhance security for its members by analyzing source code for vulnerabilities early in the development lifecycle. They rebuilt their SAST pipeline natively on GitHub Actions, integrating CodeQL and Semgrep scanners, and they also deviated from the default "paved path" approach.   #build   #ci/cd   #strategy


The Fork Awakens: Why GitHub’s Invisible Networks Break Package Security
A deep dive into a GitHub security flaw where forked commits let attackers spoof dependencies. Understand the commit SHA issue and why package managers need API-level protection.   #attack   #supply-chain   #ci/cd


Hardened Images for Everyone
Docker made their Docker Hardened Images (DHI), a secure, minimal, production-ready set of images, freely available and open source to everyone who builds software.   #containers   #supply-chain   #build   #announcement


Tales of OIDC & OAuth Security: What It Takes to Trust a Token
This article explores OIDC and OAuth flows, examines common related attacks, and discusses practical hardening strategies.   #iam   #attack   #defend   #explain


Azure Seamless SSO: When Cookie Theft Doesn’t Cut It
The cookie crumbled when it expired, but the attack path didn't. Learn how BloodHound graph analysis and Azure Seamless SSO enabled pivoting into the cloud.   #azure   #attack   #iam


BadPods Series: Everything Allowed on AWS EKS
How to exploit misconfigured Kubernetes pods on AWS EKS using BishopFox's BadPods "everything-allowed" manifest. Shows container escape via chroot, lateral movement using nsenter, and cloud credential theft via IMDS.   #aws   #kubernetes   #containers   #attack

Tools


threatcl
Documenting your Threat Models with HCL.


pathfinding.cloud
An AWS IAM Privilege Escalation Path Library. You can also refer to the companion blog post.


firecrackmanager
FireCrackManager is a MicroVM management daemon for Firecracker.

AI


Eurostar AI vulnerability: when a chatbot goes off the rails
A researcher found four issues in Eurostar's public AI chatbot including guardrail bypass, unchecked conversation and message IDs, prompt injection leaking system prompts, and HTML injection causing self XSS.


Task Injection – Exploiting agency of autonomous AI agents
Check this post to find out what a Task Injection attack is, how this type of attack differs from Prompt Injection, and how it is particularly relevant to AI agents designed for a wide range of actions and tasks.


Prompt Injection Inside GitHub Actions: The New Frontier of Supply Chain Attacks
Aikido Security discovered "PromptPwnd," a novel vulnerability class affecting GitHub Actions and GitLab CI/CD pipelines integrated with AI agents. Attackers inject malicious prompts through untrusted input (issues, PRs) to manipulate AI agents with privileged access, leaking secrets or compromising workflows. At least five Fortune 500 companies impacted.

From the cloud providers


#AWS   Advanced notice: Amazon S3 to disable the use of SSE-C encryption by default for all new buckets and select existing buckets in April 2026
Starting on April 6, 2026, AWS will be changing how server-side encryption with customer-provided keys (SSE-C) is enabled for Amazon S3 buckets. With this change, SSE-C will be disabled by default on all new S3 general purpose buckets.


#GCP   How Google Does It: Using Binary Authorization to boost supply chain security
"Don't trust, verify" guides how Google secures their entire software supply chain. Here's how they use Binary Authorization to ensure that every component meets security best practices and standards.

Thanks for reading!

If you found this newsletter helpful, I'd really appreciate if you could forward it to your friends and colleagues! 👌

If you have questions, comments, or feedback, let me know on Twitter (@lancinimarco / @CloudSecList), or at feedback.cloudseclist.com!

Thanks,
Marco
Forward Forward
Twitter Tweet
Share Share

How did you like this issue of CloudSecList?

1       2       3       4       5

Archives View in browser Sponsorship
© 2019-present CloudSecList · Marco Lancini