‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌

Monday,
March 4, 2024

Time to read: 4 minutes

📣️ Open Cloud Security with Prowler SaaS CSPM (Sponsor)

Break free from expensive, complex, and closed security solutions.

With Prowler SaaS, enjoy the freedom and transparency of an open-source core with an easy-to-use and powerful CSPM SaaS solution.

Try Prowler SaaS for free and join thousands of engineers in the Open Cloud Security Movement.

📋 Chef's Weekly selections

🍹 Monitor AWS Managed IAM Policies

Managed Policy changed since last week: 8

🚩 AWSConfigServiceRolePolicy
AWSSecurityHubReadOnlyAccess
🚩 AWSThinkboxAWSPortalAdminPolicy
🚩 AWS_ConfigRole
🚩 AmazonRDSCustomInstanceProfileRolePolicy
🚩 AmazonSecurityLakeAdministrator
🚩 AutoScalingServiceRolePolicy
🚩 SecretsManagerReadWrite

Weekly diff

🤖 Powered by MAMIP | 🚩 Sensitive IAM Actions included

🍔 AWS API Changes

🥣 Secret Sauce

Each week, we'll showcase your top AWS insights, focusing on AWS Security tricks and tips. Got a cool command-line hack, a clever console maneuver, or an awesome open-source tool? Send us your best tips for a shot at being featured in our upcoming issues.

This week, a blog post from Paul Santus: IT Manager • Software Architect • AWS Cloud Architect • I love empowering IT Teams with Agile and DevOps :)

How to use the Systems Manager (SSM) Start-Session for EC2 instances for interactive shells and port forwarding. A unique approach for Fargate-hosted containers using the container's runtimeId to facilitate SSM start-session commands, allowing secure and direct database connections. Example commands include:

📣 Kubernetes Security for Dummies (Sponsor)

How to implement a container security solution and 10 Kubernetes security best practices all rolled into one.

Wiz partnered with Wiley to create the Kubernetes Security for Dummies eBook. This free guide includes everything essential to know about building a strong security foundation and running a well-protected operating system.

Get The Kubernetes Security for Dummies eBook

🥗 AWS Security Blog

🧁 IAM Permission Changes

☕︎ CloudFormation Updates

No update this week.

🍪 Amazon Linux CVEs

This section will show you the latest (Important and Critical) CVEs on Amazon Linux.

Amazon Linux 2:

- ALAS-2024-2473 (important): sudo

👾 r/aws

🗯️ Enjoying our updates? Share your thoughts!

☆ ☆ ☆ ☆ ☆

🖊️ stay ahead of the game by subscribing

📢 Gain visibility for your brand by sponsoring our content

💌 If you have any suggestions for future topics, let us know