Security Newsletter - DC police data breach. DigitalOcean billing data breach. Apple fixes actively used zero-day.
Dieter Van der StockMay 03
3
Monday May, 2021
SRE Weekly Issue #268
Lex NevaMay 03
📖 [The CloudSecList] Issue 85
Marco from CloudSecListMay 02
[tl;dr sec] #81 - Modern Security Tooling, Visualizing Dependencies
Clint at tl;dr secApr 29
AWS Secrets Manager Delivers Provider for Kubernetes Secrets Store CSI Driver
Apr 26
Today, AWS Secrets Manager launched the AWS Secrets and Configuration Provider (ASCP), a plugin for the industry-standard Kubernetes' Secrets Store CSI driver. ASCP enables applications running in Kubernetes pods to retrieve secrets from AWS Secrets Manager easily, without the need for custom code. Once installed, ASCP ensures your applications always …
AWS Resource Access Manager is Now Available in the Asia Pacific (Osaka) Region
Apr 26
You can now use AWS Resource Access Manager (RAM) in the Asia Pacific (Osaka) Region.
Amazon CloudFront - 8 new 8 updated methods
Apr 30
CloudFront now supports CloudFront Functions, a native feature of CloudFront that enables you to write lightweight functions in JavaScript for high-scale, latency-sensitive CDN customizations.
Amazon Connect Customer Profiles - 2 new 3 updated methods
Apr 30
This release introduces GetMatches and MergeProfiles APIs to fetch and merge duplicate profiles
Amazon Forecast Service - 1 new methods
Apr 30
Added new DeleteResourceTree operation that helps in deleting all the child resources of a given resource including the given resource.
AWS Marketplace Catalog Service - 2 updated methods
Apr 30
Allows user defined names for Changes in a ChangeSet. Users can use ChangeNames to reference properties in another Change within a ChangeSet. This feature allows users to make changes to an entity when the entity identifier is not yet available while constructing the StartChangeSet request.
Resolved: Application Load Balancer Session Ticket Issue
aws@amazon.comApr 26
Initial Publication Date: 2021/04/26 10:20 AM PDT
On April 13th, 2021, AWS became aware of an edge case that affected how some Application Load Balancers (ALB) handled key rotation for TLS/SSL session ticket encryption. This edge case was introduced in September, 2020 and resulted in a small percentage of ALB …
Integrate CloudHSM PKCS #11 Library 5.0 with serverless workloads
Nikolai DanylchykApr 28
Amazon Web Services (AWS) recently released PCKS #11 Library version 5.0 for AWS CloudHSM. This blog post describes the changes implemented in the new library. We also cover a simple encryption example with the Advanced Encryption Standard (AES) algorithm in Galois/Counter Mode (GCM), dockerized, running on AWS Fargate. The primary …
Hands-on walkthrough of the AWS Network Firewall flexible rules engine
Joel DesaulniersApr 27
AWS Network Firewall is a managed service that makes it easy to provide fine-grained network protections for all of your Amazon Virtual Private Clouds (Amazon VPCs) to ensure that your traffic is inspected, monitored, and logged. The firewall scales automatically with your network traffic, and offers built-in redundancies designed to …
Monitor and control actions taken with assumed roles
Apr 13
Administrators can configure IAM roles to require that identities pass a source identity, which is logged in AWS CloudTrail. Reviewing source identity information helps administrators determine who or what performed actions with assumed role sessions.
Daniel Kaminsky, Internet Security Savior, Dies at 42
If you are reading this obituary online, you owe your digital safety to him.
Scott Piper @0xdabbad00
There was a TLS issue that impacted AWS ALBs which could have allowed MitM attacks. Will AWS inform impacted customers? Nice work by the folks at Paderborn and Ruhr universities for discovering the issue. aws.amazon.com/security/secur…
125
56Apr 27 · 4:31 PM
Clint Gibler @clintgibler
🛡️ A Practical Guide to Writing Secure Dockerfiles
@madhuakula on useful Docker security resources + tools
* Securely passing in secrets
* Tools: BuiltKit, hadolint, dockle, dive, conftest
* DockerSlim: autogenerating Seccomp and AppArmor profiles
medium.com/miro-engineeri…
6421Apr 27 · 9:00 PM
Christophe @christophetd
HCSEC-2021-12: Hashicorp's signing key was compromised as part of the codecov incident. discuss.hashicorp.com/t/hcsec-2021-1…
3422Apr 26 · 5:59 PM
Kinnaird McQuade💥☁️ @kmcquade3
Goodbye Virginia - I’m off to new beginnings in California✌🏼
I just left for my 30 day road trip across the US on my way to San Francisco. I’ll be posting some travel photos along the way.
500Apr 30 · 8:57 PM Scott Piper @0xdabbad00
CloudFront Functions? Like Lambda@Edge? Just saw this in the SDK, waiting for AWS to blog about it.
Sometimes it seems like AWS has so many features that even they forget sometimes what they have and just recreate them.
443Apr 30 · 11:23 PM Clint Gibler @clintgibler
🐚 ShellCheck: a static analysis tool for shell scripts by @vidar_holen
Largely focuses on quality/correctness issues:
* Incorrect quoting or conditionals
* Frequently misused commands
* Common beginner mistakes
* Portability
* and more!
github.com/koalaman/shell…
3413Apr 28 · 9:00 PM Kinnaird McQuade💥☁️ @kmcquade3
Simply had to take a picture outside “Cloudland” Canyon in Georgia
230May 02 · 8:11 PM
Matt Fuller @matthewdfuller
This is pretty neat! Between this and @cloudqueryio I get the feeling cloud security people love SQL :D
Mazin Ahmed @mazen160
I'm open-sourcing my newest project, tfquery: a framework that allows running SQL queries on Terraform code.
It saved me dozens of hours in analysis. Feedback are welcome!
github.com/mazen160/tfque…
151Apr 28 · 1:09 PM
We are AWS Auto Scaling Experts - Ask us Anything – Apr 29th @ 11AM PT / 2PM ET / 7PM GMT!
Do you have questions about Auto Scaling on AWS?
Post anything you’ve got on your mind about EC2 Auto Scaling(ASGs), Application Auto Scaling, AWS Auto Scaling Plans etc
Post your questions below and we'll answer them in this thread starting at Apr 29th @ 11AM PT / 2PM …
Moving from EC2 to ECS Fargate, any gotchas we should be aware of?
We have a small web application and API running on a T2.medium Windows Server as of today. The instance is today running with a lot of free resources and is averaging about \~2-4% CPU usage with CPU credits staying at max level most of the times.
Due to some architectural …
[HIRING] SOC Security Analyst in Herndon, VA
The Amazon Web Services (AWS) Security Operations Center (SOC) is expanding physical operations to support the growth of our data centers and related security functions. We are seeking a Security Analyst with physical security and operations room/center experience to join our Incident Response Team (IRT). The IRT conducts physical security …
- 🖊️ This newsletter was fwd to you? Subscribe here
- 💌 Want to suggest new content: contact me or reply to this email
- ⚡️ Powered by Mailbrew