This week's articles
When an Attacker Meets a Group of Agents: Navigating Amazon Bedrock's Multi-Agent Applications
Unit 42 red-teamed Amazon Bedrock's multi-agent collaboration framework, demonstrating a four-stage attack chain: operating mode detection, collaborator agent discovery, payload delivery via prompt injection, and exploitation (instruction/tool schema extraction, malicious tool invocation). No Bedrock vulnerabilities were found; enabling Bedrock Guardrails mitigates all demonstrated attacks.
Claude & Control: An Introduction to Agentic C2 with Computer Use Agents
This blog explores how computer use agents can be used to build an agentic command-and-control framework. By combining LLM reasoning with desktop interaction tools, attackers could automate endpoint control while blending into normal system behavior. Here, we break down the architecture, abuse scenarios, and detection opportunities.
|