New research: AWS API Gateway could be exploited via a HTTP header smuggling attack
Recent research details a method to exploit a security flaw in the Amazon Web Services (AWS) API Gateway through an HTTP header smuggling attack. Pentesting specialist Daniel Thatcher, in charge of the report, points out that a threat actor can use this flaw to hide HTTP request headers from certain servers while keeping them visible […]