GuardDutyAnnouncementsApr 07
10
Monday April, 2023
📣 Sponsor
How many AWS accounts do you have?
Most teams working with AWS know that it can be surprisingly difficult to answer this question.
Nudge Security can help. In minutes, our platform will discover all AWS accounts and assets ever created by anyone (even past employees). You’ll also be alerted as new accounts are created so you can enroll them in cloud governance orgs using built-in, automated workflows.
Start a free trial now.
🐿 In a nutshell
The introduction of the new Twitter API Plans has caused problems for several small products that depend on Twitter.
As a result, Mailbrew, the tool I use to send ASD and analyze popular tweets from a predetermined list of the AWS Security community, has ceased to function correctly for the Twitter module.
However, this issue is expected to be resolved soon (I hope), as Mailbrew was recently acquired by EV.
In the meantime, I plan to develop my own tool to replace tweets analysis section. My goal is to ensure that my newsletter remains independent of external products.
📢 MAMIP (Monitor AWS Managed IAM Policies)
Policies changed since last week (7):
- AWSMediaConnectServicePolicy
- AWSMigrationHubRefactorSpaces-EnvironmentsWithoutBridgesFullAccess
- AWSProtonServiceGitSyncServiceRolePolicy
- AWSProtonServiceSyncServiceRolePolicy
- AmazonDataZoneProjectDeploymentPermissionsBoundary
- AmazonRedshiftDataFullAccess
- AmazonRedshiftServiceLinkedRolePolicy
AWS Notification Message
[tl;dr sec] #176 - Cloud Security Atlas, Semgrep + AI
Clint at tl;dr secApr 06
AWS Notification Message
GuardDutyAnnouncementsApr 05
AWS IoT Greengrass V2 - 1 updated methods
Apr 6
Add support for SUCCEEDED value in coreDeviceExecutionStatus field. Documentation updates for Greengrass V2.
AWS Proton - 8 new 11 updated methods
Apr 6
This release adds support for the AWS Proton service sync feature. Service sync enables managing an AWS Proton service (creating and updating instances) and all of it's corresponding service instances from a Git repository.
AWS Config - 12 updated methods
Apr 5
This release adds resourceType enums for types released in March 2023.
📣 Sponsor
Scaling your cloud identity entitlement management (CIEM) is only possible if your process scales.
Learn how to scale AWS permissions management without more experts or another siloed security tool:
#CIEM #CAMT #SilolessSecurity
Reduce triage time for security investigations with Amazon Detective visualizations and export data
Alex WaddellApr 5
To respond to emerging threats, you will often need to sort through large datasets rapidly to prioritize security findings. Amazon Detective recently released two new features to help you do this. New visualizations in Detective show the connections between entities related to multiple Amazon GuardDuty findings, and a new export …
TLS inspection configuration for encrypted traffic and AWS Network Firewall
Shiva VaidyanathanApr 4
AWS Network Firewall is a managed service that provides a convenient way to deploy essential network protections for your virtual private clouds (VPCs). In this blog, we are going to cover how to leverage the TLS inspection configuration with AWS Network Firewall and perform Deep Packet Inspection for encrypted traffic. …
Logging strategies for security incident response
Anna McAbeeApr 4
Effective security incident response depends on adequate logging, as described in the AWS Security Incident Response Guide. If you have the proper logs and the ability to query them, you can respond more rapidly and effectively to security events. If a security event occurs, you can use various log sources …
trustedadvisor: 10 new actions
Apr 8
10 new actions: CreateEngagement (Grants permission to create an engagement), CreateEngagementAttachment (Grants permission to create an engagement attachment), CreateEngagementCommunication (Grants permission to create an engagement communication), GetEngagement (Grants permission to view an engagment), GetEngagementAttachment (Grants permission to view an engagment attachment), GetEngagementType (Grants permission to view a specific engagement type), …
codecatalyst: 3 new actions | 8 updated actions, 1 updated resource
Apr 8
3 new actions: ListTagsForResource (Grants permission to list tags for an Amazon CodeCatalyst resource), TagResource (Grants permission to tag an Amazon CodeCatalyst resource), UntagResource (Grants permission to untag an Amazon CodeCatalyst resource); 8 updated actions: AcceptConnection (conditions), AssociateIamRoleToConnection (conditions), DeleteConnection (conditions), DisassociateIamRoleFromConnection (conditions), GetBillingAuthorization (conditions), GetConnection (conditions), ListIamRolesForConnection (conditions), PutBillingAuthorization …
Bill shock! Unexpected spike in price.
Typically my bill is a consistent $180/mth. I got my bill yesterday and it was $430 and I’m already on track to spend $600 this month. I use US East (N. Virginia)
My website was in development during the past several months, and we just launched less than a week …
- 🖊️ Don't miss out on the latest industry insights - stay ahead of the game by subscribing
- 📢 Gain visibility for your brand by sponsoring our content
- 💌 If you have any suggestions for future topics, let us know
