A major operation seeking exposed credentials of Amazon Web Services (AWS) customers has been discovered, with hackers scanning millions of websites and exfiltrating sensitive data from thousands ...

AWS customers were hit by a major cyberattack, resulting in stolen credentials being stored in plain sight due to misconfigured sites.

The information pulled this way included AWS customer keys and secrets, database credentials, Git credentials and source code, SMTP credentials (for email sending), API keys for services like ...

The SDK supports Amazon’s web identity federation feature (you wouldn’t want to add your AWS credentials in your HTML and JavaScript, after all).

Alas, none had done it -- until yesterday, when Amazon announced their AWS SDK for JavaScript in the Browser. Theoretically, it does for their web services, what Dropbox did for theirs.