Security News Alert: Threat Actors Can Leverage AWS STS to Infiltrate Cloud Accounts TheHackerNews Daniel Bender Dec 6, 2023 AWS STS tokens can be stolen via malware, exposed credentials, or phishing. Threat actors are using these tactics to breach cloud accounts.