AWS Bedrock Exposes Enterprise Integrations To Intrusion

Cybersecurity researchers, led by XM Cyber, report that Amazon Web Services' Bedrock platform recently presents multiple exploit routes that can expose corporate infrastructure and data. The analysis identifies eight access-focused attack vectors—misconfigurations, integrations with Salesforce, Lambda and SharePoint, vulnerable RAG workflows, and log tampering—that enable credential theft, lateral movement and evidence removal. Organizations should tighten access controls, logging, and prompt management to mitigate these risks.