Join this session if you want to get all the details of an interesting AWS compromise which took place in the beginning of 2024. We will share details of the attack including some 'unknown' attack techniques. This talk also aims to share AWS IR tips and tricks that help(ed) us get to to the bottom of this attack and that can be applied in your own environment.

Whether you are a seasoned defender of AWS environments or new to the field, this session helps you with practical takeaways. Discover effective methods that helped us get to the bottom of this attack and apply them in your own environment.