As users, we can take measures to avoid Hackeo in our devices and services, but this does not always keep us safe. Programming with productive Amazon, Amazon Q, an event that exposed almost a million users to the deletion of a potential system of the system. At the beginning of this month, a hacker Amazon Q github managed to inject unauthorized code into the open source tank. This malicious code contained open instructions for the AI tool to “clean the system almost to factory state and eliminate the file system and the cloud resources”.

The most worrying thing is that change is introduced with a seemingly routine desire and is accepted once, Distributed to the public in the 1.84.0 version of the Amazon Extension Q on 17 JulyThe company reaches almost a million users before noticing the attack.

They reveal the low security of Amazon Q in a cyber attack

The first response of Amazon’s first response that did not immediately detect the gap and chose to withdraw the version that was undertaken without a public announcement created significant criticism by security experts and developers. Corey Quinn, the chief economist of the cloud in the Duckbill group, said in Bluesky. This is not about moving fast and breaking things, but to move fast and let foreigners write your roadmap.

Hacker, responsible for the gap, announced Amazon’s “inadequate security measures” to the publicHe describes his defenses as “security theater”. His target was a deliberate demonstration to perform Laxas Amazon safety applications, according to his average statements, not real damage. In fact, the code designed to delete systems could not be used deliberately and served as a warning instead of an operational threat.

After an internal investigation of the security team, Amazon concluded that the code would not be carried out as desired due to a technical error in the code itself. The company responded by canceling the identity information, eliminating the unauthorized code and initiating a new version of the extension (1.85.0 or posterior). In a written statement, Amazon reiterated that security was the highest priority and said that no source of its customers was affected.

These common applications in digital systems It is an important call for attention to the need to balance innovations with unshakable security.In particular, when it comes to AI tools that can directly affect millions of user systems.

You can follow iPadizat Whatsapp on Facebook, Twitter (x) Or consult our Telegram channel to be up -to -date with the latest technology news.