Issue #101
Monday · January 16, 2023
π₯ AWS security blogs
- Three key security themes from AWS re:Invent 2022 β AWS re:Invent returned to Las Vegas, Nevada, November 28 to December 2, 2022. After a virtual event in 2020 and a hybrid 2021 edition, spirits were high as over 51,000 in-person attendees returned to network and learn about the latest AWS innovations. Now in its 11th year, the conference featured β¦
- Recap to security, identity, and compliance sessions at AWS re:Invent 2022 β AWS re:Invent returned to Las Vegas, NV, in November 2022. The conference featured over 2,200 sessions and hands-on labs and more than 51,000 attendees over 5 days. If you werenβt able to join us in person, or just want to revisit some of the security, identity, and compliance announcements and β¦
π Reddit threads on r/aws
- AWS Lambda now supports Maximum Concurrency for Amazon SQS as an event source
- META: How do we feel about the blog "spam?" β Personally, it drives me up the wall. I feel like 9/10 times a post from /r/aws ends up in my front page, it's just a link to an article with zero comments, no discussion to be had, etc. I'd feel a lot better about these sorts of posts if the β¦
- AWS Network Firewall adds support for reject action for TCP traffic
- AWS Clean Rooms is now available in preview
π Newsletters
π Top Links from Security Folks
- Taking The New Secrets Manager Lambda Extension For a Spin β Walkthrough on using the new Lambda Extension to retrieve secrets, and comparison against using Boto3
- Update detected Β· z0ph/MAMIP@55573d4 β [MAMIP] Monitor AWS Managed IAM Policies Changes . Contribute to z0ph/MAMIP development by creating an account on GitHub.
- CircleCI incident report for January 4, 2023 security incident β Read the complete incident report from CircleCIβs January 4, 2023 security alert.
π "AWS Security" on Google News
π AWS IP Ranges Updates
- AWS IP Ranges update for 2023-01-05 06:03:06 β Changed by +2 Added 15.230.19.250/31
- AWS IP Ranges update for 2023-01-05 07:43:09 β Changed by -64 Removed 13.34.81.64/26
π§ IAM permission changes
- elasticmapreduce: 1 new action β 1 new action: GetClusterSessionCredentials (Grants permission to retrieve HTTP basic credentials associated with a given execution IAM Role for a fine-grained access control enabled EMR Cluster)
- cleanrooms: 34 new actions, 4 new resources β 34 new actions: BatchGetSchema (Grants permission to view details for schemas), CreateCollaboration (Grants permission to create a new collaboration, a shared data collaboration environment), CreateConfiguredTable (Grants permission to create a new configured table), CreateConfiguredTableAnalysisRule (Grants permission to create a analysis rule for a configured table), CreateConfiguredTableAssociation (Grants permission to link β¦
- iam: 11 new actions β 11 new actions: DeleteCloudFrontPublicKey (Grants permission to delete an existing CloudFront public key), GetAccountEmailAddress (Grants permission to retrieve the email address that is associated with the account), GetAccountName (Grants permission to retrieve the account name that is associated with the account), GetCloudFrontPublicKey (Grants permission to retrieve information about the specified β¦
πͺ API changes
- AWS Clean Rooms Service - 34 new methods β Initial release of AWS Clean Rooms
- AWS Lambda - 5 updated methods β Add support for MaximumConcurrency parameter for SQS event source. Customers can now limit the maximum concurrent invocations for their SQS Event Source Mapping.
- AWS Elemental MediaConvert - 11 updated methods β The AWS Elemental MediaConvert SDK has added support for compact DASH manifest generation, audio normalization using TruePeak measurements, and the ability to clip the sample range in the color corrector.
- AWSKendraFrontendService - 1 updated methods β This release adds support to new document types - RTF, XML, XSLT, MS_EXCEL, CSV, JSON, MD
