Kaspersky’s Stolen Amazon SES Token Used For Phishing

November 2, 2021

Kaspersky recently confirmed that a legitimate Amazon Simple Email Service (SES) token, issued to a third-party vendor, was recently used by threat actors to target Office 365 users in a phishing attack.

The attackers used two phishing kits, including “Iamtheboss” and “MIRCBOOT.”

Although the attackers used an official Kaspersky email and sent the emails from the Amazon Web Services infrastructure, which provided them with the support they needed to reach their target mailboxes without being flagged, Kaspersky noted that “No server compromise, unauthorized database access or any other malicious activity was found at 2050.earth and associated services,”

The SES token was revoked immediately after the phishing attacks were discovered.

Going forward, Kaspersky urged users and phishing attackers to remain vigilant and not disclose their information or login credentials even if the message comes from a familiar or well-known brand.

For more information, read the original story in Bleeping Computer.

Kaspersky’s Stolen Amazon SES Token Used For Phishing

Top Stories

Meta buys agentic AI startup Manus to boost consumer AI push

AST SpaceMobile launches largest satellite ever, challenging Starlink with direct-to-phone 5G

SoftBank sells remaining Nvidia stake to fund $22.5B OpenAI commitment

What a year this has been.

Top 10 reflections on information technology developments in 2025

Spotify says it has identified account behind mass scraping claimed by pirate group

Related Articles

Over 59,000 Next.js servers hacked in 48 hours in credential-theft campaign

NIST warns of inaccurate internet time after atomic clock disruption

Critical LangChain flaw exposes secrets across millions of AI agent deployments

Facial recognition becomes mandatory for new mobile accounts in South Korea

TND News Desk

TND News Desk

Jim Love

Follow Us

Popular categories

Tech News Delivered