Amazon blames human employees for an AI coding agent’s mistake
Amazon blames human employees for an AI coding agent’s mistake
Amazon Web Services suffered a 13-hour outage to one system in December as a result of its AI coding assistant Kiro’s actions, according to the Financial Times. Numerous unnamed Amazon employees told the FT that AI agent Kiro was responsible for the December incident affecting an AWS service in parts of mainland China. People familiar with the matter said the tool chose to “delete and recreate the environment” it was working on, which caused the outage.
While Kiro normally requires sign-off from two humans to push changes, the bot had the permissions of its operator, and a human error there allowed more access than expected.
A supply chain attack targeting developers surfaced on March 2, 2026, when unauthorized code was found inside two versions of the Aqua Trivy VS Code extension on the OpenVSX registry. The compromised versions — 1.8.12 and 1.8.13 — were uploaded on February 27 and 28, 2026, under the aquasecurityofficial.trivy-vulnerability-scanner namespace. The attack…
A security researcher successfully infiltrated Amazon’s popular AI coding assistant and embedded malicious commands designed to wipe users’ computers, exposing significant vulnerabilities in the tech giant’s development pipeline. The breach, which resulted in Amazon unknowingly distributing compromised code to users of its Q AI assistant for Visual Studio Code, represents…
After less than two years at Amazon, David Luan, the head of Amazon's San Francisco AI lab, is departing the company. Luan announced the update in a post on LinkedIn on Tuesday, saying, "I'll be leaving Amazon at the end of this week to cook up something new." He added…