BTC $71,807
2026 Bull Run Is Building Start trading with 5% OFF all fees
Sign Up Now
BTC $71,807
Bull Run 2026 | 5% Off Fees Open your Binance account today
Sign Up

Exposed Cloud Training Apps Exploited by Attackers

Demo apps left exposed become silent cloud hijackers for Fortune 500 environments.

  • Security researchers found nearly 2,000 publicly exposed, intentionally vulnerable training apps in cloud environments, with 60% hosted on customer-managed infrastructure.
  • Approximately 20% of these exposed instances contained artifacts from active exploitation, including crypto-mining activity and webshells.
  • The pattern affected major organizations, including Fortune 500 companies and cybersecurity vendors like Palo Alto, F5, and Cloudflare, creating a foothold for broader cloud access.
  • Exploitation leveraged default credentials and known weaknesses, not advanced techniques, turning demo tools into significant security risks.

“Intentionally vulnerable training applications are widely used for security education, internal testing, and product demonstrations.” However, new research reveals these demo tools are often dangerously misconfigured in live cloud environments. A recent Pentera Labs research investigation identified a recurring and risky deployment pattern across major cloud platforms. Consequently, applications like OWASP Juice Shop or DVWA were frequently found exposed to the public internet.

- Advertisement -

The research verified nearly 2,000 live, exposed instances, with close to 60% hosted on active customer infrastructure on AWS, Azure, or GCP. These apps were often connected to cloud identities with overly permissive roles. Meanwhile, attackers were not just probing these systems but actively compromising them. Evidence showed roughly 20% of instances contained malicious artifacts like crypto-mining software.

This exploitation provides attackers an initial foothold far beyond the vulnerable application itself. The scope of impact extended to environments associated with prominent Fortune 500 organizations and leading cybersecurity firms. Ultimately, labeling an environment as “training” does not reduce its risk when it’s publicly accessible. The underlying issue stems from excluding these temporary assets from standard security monitoring and lifecycle management.

The presence of active crypto-mining and persistence tooling demonstrates real-world abuse is already occurring at scale. For more details on the methodology and findings, refer to the full research blog or a related live webinar.

✅ Follow BITNEWSBOT on Telegram, Facebook, LinkedIn, X.com, and Google News for instant updates.

- Advertisement -

Previous Articles:

- Advertisement -
Ad
Altseason Is Loading. Don't watch from the sidelines.
SOL $90.51
DOGE $0.0963
LINK $9.02
SUI $1.00
5% off fees when you sign up
Start Trading
Ad
Pay Less on Every Trade. For Life.
$10K/mo volume Save $60/yr
$50K/mo volume Save $300/yr
$100K/mo volume Save $600/yr
5% off all trading fees when you sign up
Claim Your Discount

Latest News

Cambridge: Ethereum Energy Intensity Low, Overall Use High

Ethereum consumes roughly 7.87 GWh annually, the second-lowest energy intensity per market value among...

Saylor and Back oppose BIP-110 fork over Bitcoin security fears

Michael Saylor and Adam Back have publicly opposed BIP-110, a temporary Bitcoin fork proposal...

China, India groups target Pakistani police in cyber espionage

Suspected China- and India-aligned threat actors targeted Pakistani law enforcement in a sustained cyber...

AMD Stock Dips 10% Amid AI Volatility Ahead of Q3 Earnings

AMD stock fell nearly 10% from $580 on June 30 to roughly $516 by...

Bitcoin Creator Back Warns BIP-110 Data Limit Could Split Network

Adam Back said Bitcoin has "robustly rejected" BIP-110, arguing the proposal conflicts with the...

Must Read

How To Travel With Bitcoin: 9 Travel Companies Accepting Bitcoin

Bitcoin travel is a reality, as several travel companies now accept payments in cryptocurrencies for their services.Those who have opened a Bitcoin account on...
Ad
Altseason Is Loading. These 4 coins are trending right now.
SOL $92.12
DOGE $0.0950
LINK $9.02
SUI $1.02
5% off spot fees when you sign up
Start Trading