Cloud Threat Landscape
  • Incidents
  • Actors
  • Techniques
  • Defenses
  • Tools
  • Targeted Technologies
  • Posters & Newspapers
  • About
  • RSS
  • STIX
  • Back to wiz.io
Cloud Threat Landscape
🔮

JINX-2401

Tags
Attribution
💰Cybercrime
Incidents
LLM Hijacking Targeting AWS
References
https://www.wiz.io/blog/jinx-2401-llm-hijacking-aws
Last edited
Dec 25, 2024 11:46 AM
Status
Finalized
Cloud-fluent
Targeted geography
Unknown
Targeted industries
Unknown

JINX-2401 is a threat actor that has been observed by Wiz Threat Research while targeting AWS Bedrock with compromised credentials and attempting to hijack LLM models in multiple AWS environments.

Their techniques included creating new IAM users with policies granting Bedrock permissions and setting up console profiles for completing the LLM agreement process. The attacker relied on API calls such as PutUseCaseForModelAccess and CreateFoundationModelAgreement to establish access but was blocked by SCPs. Despite gaining Administrator Access permissions in one environment, multiple attempts to invoke models failed. The campaign exhibited consistent behavioral patterns, including naming conventions for IAM users and policies, which facilitated cross-environment detection.

Made with 💙 by Wiz

Last Updated: April 3, 2025