Here’s how carefully concealed backdoor in fake AWS files escaped mainstream notice Files available on the open source NPM repository underscore a growing sophistication.

A little later on December 1, 2024, AWS introduced Allowed AMIs, a feature that lets users define a trusted allow list for AMI selection, mitigating the whoAMI name confusion attack.