AI-Powered Attack Breaches AWS Environment in Under 10 Minutes On November 28, 2025, a threat actor exploited exposed credentials in public Amazon S3 buckets to gain initial access to an AWS environment, escalating privileges to administrative control in just eight minutes. The attack, analyzed by Sysdig’s Threat Research Team (TRT), highlights the growing role of AI and large language models (LLMs) in accelerating cyber intrusions. The attacker leveraged Lambda function code injection, repeatedly modifying an existing function (EC2-init) to target a user ("frick") with admin privileges. Once inside, they used AI-assisted techniques to automate reconnaissance, generate malicious code, and execute real-time decisions, significantly reducing the time defenders had to detect and respond. Key tactics included: - Programmatic interaction with AWS Marketplace APIs to access AI models (e.g., Claude, DeepSeek R1, Meta’s Llama 4 Scout) on the victim’s behalf. - Cross-region inference profiles to distribute model invocations, complicating detection. - Lateral movement across 19 AWS principals, including attempts to assume cross-account roles by enumerating account IDs some of which did not belong to the target organization. - Provisioning GPU instances on EC2 for potential AI model development or resource abuse. - Exfiltration of cloud data and abuse of Amazon Bedrock, an AI app-dev environment. The attack’s speed and efficiency were attributed to AI-driven automation, with the threat actor writing code in Serbian and demonstrating advanced scripting techniques, including exception handling. Researchers noted hallucinated elements in the attacker’s scripts, further suggesting LLM assistance. The initial breach stemmed from a basic security lapse: valid credentials left exposed in public S3 buckets, some named using common AI tool conventions. Experts emphasized that such oversights like relying on long-term IAM user credentials instead of temporary roles remain a persistent risk in cloud environments. The incident underscores how AI is reshaping cyber threats, enabling attackers to execute complex operations with unprecedented speed and precision. As offensive AI tools improve, defenders face shrinking response windows, making runtime detection and least-privilege enforcement critical.