🧠Amazon’s AI Coding Assistant Compromised – Devs Alerted Too Late!
A rogue pull request injected prompts telling Amazon Q’s AI to wipe files and cloud resources. The compromised version was unknowingly published, reaching countless developers.
✔️ AWS says the code didn’t run—but researchers say otherwise.
📢 Now fixed in version 1.85.0, but the incident is a stark reminder: AI tools can be manipulated at the source.
TechNadu
🧠Amazon’s AI Coding Assistant Compromised – Devs Alerted Too Late!
A rogue pull request injected prompts telling Amazon Q’s AI to wipe files and cloud resources. The compromised version was unknowingly published, reaching countless developers.
✔️ AWS says the code didn’t run—but researchers say otherwise.
📢 Now fixed in version 1.85.0, but the incident is a stark reminder: AI tools can be manipulated at the source.
#AmazonQ #AIsecurity #DevTools #Cybersecurity #GitHubHack #SoftwareSupplyChain
2 months ago | [YT] | 0