https://hexpysya.github.io/tags/s3/Recent content in S3 on bubka hacks stuffHugo -- gohugo.ioen-usWed, 15 Apr 2026 00:00:00 +0000https://hexpysya.github.io/blue_team/splunk-awsraid/Wed, 15 Apr 2026 00:00:00 +0000https://hexpysya.github.io/blue_team/splunk-awsraid/An attacker conducted a brute-force attack to compromise the helpdesk.luke account, performed reconnaissance from various VPN IPs, exfiltrated sensitive data including customer backups and secrets, modified bucket permissions, and established persistence by creating an admin backdoor account.