🥗 Appetizer

Hey folks,

This week, I really appreciate the return of the famous blog post about detecting manual change made in AWS Console, updated with a 2024 version. A must read.

Also, a new technique, to find any AWS Accountid from an S3 bucket name (public or private).

You will find the associated code in this repository.

Bon appetit!
Victor

🍹 Monitor AWS Managed IAM Policies

Managed Policy changed since last week: 11

1. 🚩 AWSConfigServiceRolePolicy
2. 🚩 AWSDataSyncFullAccess
3. AWSIncidentManagerIncidentAccessServiceRolePolicy
4. AWSSecurityHubReadOnlyAccess
5. 🚩 AWS_ConfigRole
6. AmazonRedshiftQueryEditorV2FullAccess
7. AmazonRedshiftQueryEditorV2NoSharing
8. AmazonRedshiftQueryEditorV2ReadSharing
9. AmazonRedshiftQueryEditorV2ReadWriteSharing
10. IVSReadOnlyAccess
11. 🚩 SecretsManagerReadWrite

Weekly diff

🤖 Powered by MAMIP | 🚩 Sensitive IAM Actions included

📣 Sponsorship Available starting April

We're opening new slots for AWS Security Digest sponsorship starting in April. If you're looking to showcase your product or share your expertise, get in touch to find out more about our sponsorship opportunities.

It's your chance to get your product noticed by over 3000 decision-makers and cloud security experts.

Hit reply to learn more.