Issue #105
Monday · February 13, 2023
đ„ AWS security blogs
- Updated ebook: Protecting your AWS environment from ransomware â Amazon Web Services is excited to announce that weâve updated the AWS ebook, Protecting your AWS environment from ransomware. The new ebook includes the top 10 best practices for ransomware protection and covers new services and features that have been released since the original published date in April 2020. We âŠ
- Improve security of Amazon RDS master database credentials using AWS Secrets Manager â Amazon Relational Database Service (Amazon RDS) makes it simpler to set up, operate, and scale a relational database in the AWS Cloud. AWS Secrets Manager helps you manage, retrieve, and rotate database credentials, API keys, and other secrets. Amazon RDS now offers integration with Secrets Manager to manage master database credentials. You no longer have to manage âŠ
- The anatomy of ransomware event targeting data residing in Amazon S3 â Ransomware events have significantly increased over the past several years and captured worldwide attention. Traditional ransomware events affect mostly infrastructure resources like servers, databases, and connected file systems. However, there are also non-traditional events that you may not be as familiar with, such as ransomware events that target data stored âŠ
đ Newsletters
đ Top Links from Security Folks
- Discovering a weakness leading to a partial bypass of the login rate limiting in the AWS Console | Datadog Security Labs â In this post, we discuss a weakness we discovered in the AWS Console authentication flow that allowed an attacker to partially bypass the login rate âŠ
- Join the Rhino Security Labs Discord Server! â Check out the Rhino Security Labs community on Discord - hang out with 160 other members and enjoy free voice and text chat.
đ "AWS Security" on Google News
đ AWS IP Ranges Updates
- AWS IP Ranges update for 2023-02-01 21:43:07 â Changed by -64 Removed 13.34.87.192/26
- AWS IP Ranges update for 2023-02-02 01:43:08 â Changed by +256 Added 15.230.187.0/24
đ§ IAM permission changes
- iotfleetwise: 2 new actions â 2 new actions: BatchCreateVehicle (Grants permission to create a batch of vehicles), BatchUpdateVehicle (Grants permission to update a batch of vehicles)
- autoscaling: 1 new action â 1 new action: RollbackInstanceRefresh (Grants permission to rollback an instance refresh operation in progress)
- glue: 4 updated actions â 4 updated actions: CreateBlueprint (resources), CreateJob (resources), CreateTrigger (resources), CreateWorkflow (resources)
