Issue #152
Monday · February 26, 2024
๐ฅ Palate Cleanser
Hey folks,This week, I really appreciate the return of the famous blog post about detecting manual change made in AWS Console, updated with a 2024 version. A must read.
Also, a new technique, to find any AWS Accountid from an S3 bucket name (public or private).
You will find the associated code in this repository.
Bon appetit!
Victor
๐ Chef's selections
๐ฅ AWS security blogs
๐ Reddit threads on r/aws
- What could go wrong? Simple e-mail code login implementation
- Cognito - IdP-initiated SAML SSO
- Running untrusted code in Lambda?
- Has AWS implemented RPKI correctly?
- Do I need to care about VPC, security groups, WAF, etc.?
- Auto-Remediation
- Granting edit of Amplify environment variables with least privilege approach
- Getting an "Amazon Web Services Sign In With Authentication Device" when accessing Login & Security in Account page on Amazon store
- Default Windows Server 2019 accounts in EC2 instance are disabled
- When AWS invariants arenโt [invariant]
๐ง IAM permission changes
๐ช API changes
๐น IAM managed policy changes
Managed Policy changed since last week: 11- ๐ฉ AWSConfigServiceRolePolicy
- ๐ฉ AWSDataSyncFullAccess
- AWSIncidentManagerIncidentAccessServiceRolePolicy
- AWSSecurityHubReadOnlyAccess
- ๐ฉ AWS_ConfigRole
- AmazonRedshiftQueryEditorV2FullAccess
- AmazonRedshiftQueryEditorV2NoSharing
- AmazonRedshiftQueryEditorV2ReadSharing
- AmazonRedshiftQueryEditorV2ReadWriteSharing
- IVSReadOnlyAccess
- ๐ฉ SecretsManagerReadWrite
๐ค Powered by MAMIPย | ๐ฉ Sensitive IAM Actions included
โ CloudFormation resource changes
๐ฎ Amazon Linux vulnerabilities
This section will show you the latest (Important and Critical) CVEs on Amazon Linux.No CVE this weekย ๐
