AWS Security Digest

Issue #135

Monday · October 20, 2023

๐Ÿฅ– Palate Cleanser

Hey folks,

We all know that AWS environments are a treasure trove for your business, but they can also be a playground for cyber threats if not monitored properly. That's why I'm stoked to announce our upcoming webinar: "Monitoring your AWS Environments for Security Events."

Whether you're a seasoned pro or new to the AWS game, this webinar will give you the lowdown on how to set up effective monitoring and alerting for your cloud resources. And here's the kicker: we're focusing on aย  free and open-source tooling that you can deploy in minutes.

๐Ÿ“‹ Topics we're covering:
  • Deploying a free and open-source tool for AWS security monitoring
  • Essential metrics and alerts you shouldn't sleep on
  • How to tailor your settings for max security with minimal hassle
๐Ÿ—“ Mark your calendar: Thursday, October 19th, 2023 09:00 AM MDT / 08:00 AM PDT / 11:00 AM EDT

Don't miss out on leveling up your AWS security game. Hit the link to save your spot.

Catch you there,

Victor

๐Ÿ“‹ Chef's selections

  1. How S3 is changing the handling of the root identity in Bucket Policy on October 20, 2023
  2. Introducing Common Fate: The Future of Speedy and Secure AWS Access
  3. Following attackersโ€™ (Cloud)trail in AWS: Methodology and findings in the wild

๐Ÿ› Reddit threads on r/aws

๐Ÿช API changes

  • Nothing to show here: re:Invent23' Freeze?

โ˜• CloudFormation resource changes

๐ŸŽฎ Amazon Linux vulnerabilities


This new section will show you the latest (Important and Critical) CVEs on Amazon Linux.

Amazon Linux 2023
Amazon Linux 2

Get every AWS security change,
on a plate every Monday.

6,700+ engineers, builders and CISOs let us diff the AWS changelog every week.