Issue #109
Monday · March 13, 2023
🥗 AWS security blogs
- Establishing a data perimeter on AWS: Allow only trusted resources from my organization — Companies that store and process data on Amazon Web Services (AWS) want to prevent transfers of that data to or from locations outside of their company’s control. This is to support security strategies, such as data loss prevention, or to comply with the terms and conditions set forth by various …
- 2022 H2 IRAP report is now available on AWS Artifact for Australian customers — Amazon Web Services (AWS) is excited to announce that a new Information Security Registered Assessors Program (IRAP) report (2022 H2) is now available through AWS Artifact. An independent Australian Signals Directorate (ASD) certified IRAP assessor completed the IRAP assessment of AWS in December 2022. The new IRAP report includes an additional six AWS …
- How to use policies to restrict where EC2 instance credentials can be used from — March 7, 2023: We’ve added language clarifying the requirement around using VPC Endpoints, and we’ve corrected a typo in the S3 bucket policy example. Today AWS launched two new global condition context keys that make it simpler for you to write policies in which Amazon Elastic Compute Cloud (Amazon EC2) …
🍛 Reddit threads on r/aws
- Amazon DynamoDB now supports table deletion protection
- Cloud formation Or Terraform — I am work as AWS data engineer and presently use cloud formation for most of our deployments. Recently one of my friends mentioned about Terraform and told me that it's better of if learn Terraform as it's multi cloud. I am planning to continue to work on AWS for atleast …
- Subscribe to AWS Daily Feature Updates via Amazon SNS
- AWS Architecture Icons (Compute) - 3D prints
📌 Newsletters
📌 Top Links from Security Folks
- Meet the Newest AWS Heroes – March 2023 | Amazon Web Services — The AWS Heroes are passionate AWS experts who are dedicated to sharing their in-depth knowledge within the community. They inspire, uplift, and motivate the global …
- How a single engineer brought down Twitter on Monday — The high cost of cutting expenses
- Security Certification Roadmap - Paul Jerimy Media — IT Security Certification Roadmap charting security implementation, architecture, management, analysis, offensive, and defensive operation certifications.
- Update detected · z0ph/MAMIP@47e79f4 — [MAMIP] Monitor AWS Managed IAM Policies Changes . Contribute to z0ph/MAMIP development by creating an account on GitHub.
📌 "AWS Security" on Google News
🧁 IAM permission changes
- lakeformation: 2 new actions — 2 new actions: GetDataCellsFilter (Grants permission to retrieve a Lake Formation data cell filter), UpdateDataCellsFilter (Grants permission to update a Lake Formation data cell filter)
- devops-guru: 1 new condition | 2 updated actions — 1 new condition: devops-guru:ServiceNames (Filters access by API to restrict access to given AWS service names); 2 updated actions: ListAnomaliesForInsight (conditions), SearchInsights (conditions)
- trustedadvisor: 1 new action — 1 new action: DescribeCheckStatusHistoryChanges (Grants permission to view the results and changed statuses for checks in the last 30 days)
