Issue #157
Monday · May 20, 2024
๐ Chef's selections
๐ฅ AWS security blogs
- Explore cloud security in the age of generative AI at AWS re:Inforce 2024
- Securing generative AI: data, compliance, and privacy considerations
- How to use OAuth 2.0 in Amazon Cognito: Learn about the different OAuth 2.0 grants
- How AWS is helping customers achieve their digital sovereignty and resilience goals
- Use Amazon Verified Permissions for fine-grained authorization at scale
- Migrate your Windows PKI from Microsoft Active Directory Certificate Services to AWS Private CA Connector for Active Directory
๐ Reddit threads on r/aws
- DynamoDB Adds Support for Resource-Based Policies
- How should a vendor be granted multi-account access?
- Sensitive information in resource names
- aws_commons extension
- How to change the TLS version of the Certificate Manager Certificates
- How to prevent AWS hacks and huge bills from piling up?
- ElastiCache Redis - why would someone set a second password?
- AWS root email changed. Cannot access.
- AWS conference scam
๐ง IAM permission changes
๐ช API changes
๐น IAM managed policy changes
Managed Policy changed since last week: 12- ๐ฉ AWSCleanRoomsFullAccess
- AWSEC2VssSnapshotPolicy
- ๐ฉ AWSGlueDataBrewServiceRole
- ๐ฉ AWSLakeFormationCrossAccountManager
- ๐ฉ AWSLakeFormationDataAdmin
- AWSMSKReplicatorExecutionRole
- AWSQuickSightAssetBundleExportPolicy
- ๐ฉ AWSQuickSightAssetBundleImportPolicy
- ๐ฉ AWSRefactoringToolkitFullAccess
- ๐ฉ AWSResilienceHubAsssessmentExecutionPolicy
- ๐ฉ AWSSupportServiceRolePolicy
- AmazonGuardDutyServiceRolePolicy
๐ค Powered by MAMIPย | ๐ฉ Sensitive IAM Actions included
โ CloudFormation resource changes
๐ฎ Amazon Linux vulnerabilities
This section will show you the latest (Important and Critical) CVEs on Amazon Linux.No CVE this weekย ๐
