Bit of a shame code spaces weren't geared up with som AWS HA configuration hoping companies take note of this attack and how to limit the risk to their organisations. A simple AWS cli command could have been implemented here to force all IAM accounts with only read only access until AWS could be involved. Also master and all IAM accounts should have 2FA enabled to stop this happening.
Slashdot Mirror
Bit of a shame code spaces weren't geared up with som AWS HA configuration hoping companies take note of this attack and how to limit the risk to their organisations. A simple AWS cli command could have been implemented here to force all IAM accounts with only read only access until AWS could be involved. Also master and all IAM accounts should have 2FA enabled to stop this happening.