|
|
|
|
|
|
by dylnuge
324 days ago
|
|
|
Neither the 404 Media article nor this one claim otherwise. I think the key "AI angle" here is this (from the 404 Media article): > Hackers are increasingly targeting AI tools as a way to break into peoples’ systems. There are a lot of AI tools which run with full permission to execute shell commands or similar. If the same kind of compromise happened to aws-cli, it could be equally catastrophic, but it's not clear that the attack vector the hacker used would have been viable on a repo with more scrutiny. |
|
|