Dieter Van der StockMay 05
8
Monday May, 2023
📣 Sponsor
Discover all AWS accounts with Nudge Security
Anyone who’s worked with AWS for awhile knows what can happen when accounts are created outside of the central governance process - your standard security controls aren’t applied, accounts are easily forgotten, and unpleasant surprises in the form of high bills or security incidents can occur. Nudge Security continuously discovers all cloud assets created by your employees, from any location or device so you can avoid these pitfalls.
Learn more here.
🐿 In a nutshell
If you are using CloudTrail Lake, you will find this repository from AWS useful: a compilation of sample queries for AWS CloudTrail Lake that educate customers on implementing queries to investigate compliance data. These queries are arranged by different samples and help return tailored data.
📢 MAMIP (Monitor AWS Managed IAM Policies)
Policies changed since last week (6):
[tl;dr sec] #180 - Scaling AppSec, tl;dr sec Swag 🤯
Clint at tl;dr secMay 04
AWS Notification - Unsubscribe Confirmation
AWS NotificationsMay 03
AWS Config - 12 updated methods
May 4
Updated ResourceType enum with new resource types onboarded by AWS Config in April 2023.
Amazon CloudWatch - 2 updated methods
May 4
Adds support for filtering by metric names in CloudWatch Metric Streams.
AWS Network Firewall - 3 updated methods
May 4
This release adds support for the Suricata REJECT option in midstream exception configurations.
Get details on security finding changes with the new Finding History feature in Security Hub
Nicholas JaegerMay 4
In today’s evolving security threat landscape, security teams increasingly require tools to detect and track security findings to protect their organizations’ assets. One objective of cloud security posture management is to identify and address security findings in a timely and effective manner. AWS Security Hub aggregates, organizes, and prioritizes security …
Delivering on the AWS Digital Sovereignty Pledge: Control without compromise
Matt GarmanMay 4
At AWS, earning and maintaining customer trust is the foundation of our business. We understand that protecting customer data is key to achieving this. We also know that trust must continue to be earned through transparency and assurances. In November 2022, we announced the new AWS Digital Sovereignty Pledge, our …
How to scan your AWS Lambda functions with Amazon Inspector
Vamsi Vikash AnkamMay 3
Amazon Inspector is a vulnerability management and application security service that helps improve the security of your workloads. It automatically scans applications for vulnerabilities and provides you with a detailed list of security findings, prioritized by their severity level, as well as remediation instructions. In this blog post, we’ll introduce …
How to monitor the expiration of SAML identity provider certificates in an Amazon Cognito user pool
Karthik NagarajanMay 1
With Amazon Cognito user pools, you can configure third-party SAML identity providers (IdPs) so that users can log in by using the IdP credentials. The Amazon Cognito user pool manages the federation and handling of tokens returned by a configured SAML IdP. It uses the public certificate of the SAML …
appsync: 1 new condition | 1 updated action
May 6
1 new condition: appsync:Visibility (Filters access by the visibility of an API); 1 updated action: CreateGraphqlApi (conditions)
route53resolver: 7 updated actions
May 6
7 updated actions: AssociateResolverEndpointIpAddress (dependents), AssociateResolverRule (dependents), CreateResolverEndpoint (dependents), DeleteResolverEndpoint (dependents), DisassociateResolverEndpointIpAddress (dependents), ListResolverRuleAssociations (dependents), UpdateResolverEndpoint (dependents)
elasticfilesystem: 1 new condition | 1 updated action
May 6
1 new condition: elasticfilesystem:CreateAction (Filters access by the name of a resource-creating API action); 1 updated action: TagResource (conditions)
Provisioning AWS Infrastructure using Terraform and Jenkins CI/CD 
52#tutorial #devops #aws
52#tutorial #devops #aws How to deploy a serverless website with Terraform 24#iac #terraform #serverless
24#iac #terraform #serverless How I Reduced Docker Image Size from 1.43 GB to 22.4 MB 21#react #aws #javascript
21#react #aws #javascript Modular building blocks: The case of Amazon 18#opensource #programming #architecture
18#opensource #programming #architecture
AWS Account Owner Died
Hello -- I'm on the board of a nonprofit and the founder (who owned the AWS account hosting our webpage) passed away suddenly. We want to move our hosting/domain, but do not have his AWS password/credentials. Does anyone know of a way to transfer or unlock the account? We believe …
boto3 docs 😍
Did you see the improvements on the boto3 docs????
https://boto3.amazonaws.com/v1/documentation/api/latest/index.html
I posted a while back on the painfulness of navigating the docs even though the content itself was great. It got a lot of response here.
Due to a shift in work for a few months, I haven't needed the …
- 🖊️ Don't miss out on the latest industry insights - stay ahead of the game by subscribing
- 📢 Gain visibility for your brand by sponsoring our content
- 💌 If you have any suggestions for future topics, let us know
