Security Newsletter - Colonial pipeline news continued. Executive order on cybersecurity. FragAttacks Wifi vulnerabilities.
Dieter Van der StockMay 17
17
Monday May, 2021
SRE Weekly Issue #270
Lex NevaMay 17
📖 [The CloudSecList] Issue 87
Marco from CloudSecListMay 16
[tl;dr sec] #83 - Comparing Infra as Code Scanners, Jenkins Attack Framework
Clint at tl;dr secMay 13
AWS Notification Message
GuardDutyAnnouncementsMay 10
AWS WAF adds support for log filtering
May 13
AWS WAF now supports log filtering, enabling you to specify which web requests are logged and which requests are discarded from log after the inspection. You can use log filtering to keep only the information you want to analyze. Log filtering can also help you save on log delivery and …
AWS Certificate Manager Private Certificate Authority is now available in the Asia Pacific (Osaka) Region
May 11
AWS Certificate Manager (ACM) Private Certificate Authority (CA) is now available in the Asia Pacific (Osaka) region. This regional expansion extends the availability of ACM Private CA across the globe, increasing the number of regions to 22. The Osaka region only supports CAs with the private key stored in a …
Amazon Elastic Compute Cloud - 22 updated methods
May 12
High Memory virtual instances are powered by Intel Sky Lake CPUs and offer up to 12TB of memory.
AWS Systems Manager Incident Manager Contacts - 27 new methods
May 11
AWS Systems Manager Incident Manager enables faster resolution of critical application availability and performance issues, management of contacts and post incident analysis
AWS Systems Manager Incident Manager - 29 new methods
May 11
AWS Systems Manager Incident Manager enables faster resolution of critical application availability and performance issues, management of contacts and post-incident analysis
Amazon Elastic Kubernetes Service - 12 updated methods
May 10
This release updates create-nodegroup and update-nodegroup-config APIs for adding/updating taints on managed nodegroups.
Spring 2021 SOC 2 Type I Privacy report now available
Ninad NaikMay 17
Your privacy considerations are at the core of our compliance work at Amazon Web Services, and we are focused on the protection of your content while using AWS. Our Spring 2021 SOC 2 Type I Privacy report is now available to demonstrate our privacy compliance commitment to you. The Spring …
Use EC2 Instance Connect to provide secure SSH access to EC2 instances with private IP addresses
Jason NichollsMay 13
In this post, I show you how to use Amazon EC2 Instance Connect to use Secure Shell (SSH) to securely access your Amazon Elastic Compute Cloud (Amazon EC2) instances running on private subnets within an Amazon Virtual Private Cloud (Amazon VPC). EC2 Instance Connect provides a simple and secure way …
Ian Mckay @iann0036
AWS Systems Manager Incident Manager *inhales* is one of the worst launches I've seen in quite some time. I think @pagerduty can breathe a sigh of relief.
Here's my initial experience with the service, so you can judge for yourself. 1/
Corey Quinn @QuinnyPig
“AWS Systems Manager Incident Manager.”
aws.amazon.com/blogs/aws/reso…
169
27May 11 · 10:01 AM
Clint Gibler @clintgibler
⚒️ @NahamSec thread on popular @Burp_Suite extensions
Popular:
* Logger++
* Param miner
* Auth checking: Auto repeater, Autorize
* Turbo intruder
* Asset history
* Collaborator everywhere
* Active scan++
* Backslash powered scanner
#bugbountytips
Ben Sadeghipour @NahamSec
I don't use a lot of burp extensions and I'm trying to change that (again). What are some of your @Burp_Suite extensions and why?
5510May 11 · 7:00 PM
fwd:cloudsec @fwdcloudsec
The CFP is now open for fwd:cloudsec! fwdcloudsec.org/cfp.html
The CFP closes on July 16th, but don't wait because all talks submitted within the first month will get feedback to resubmit. We hope this especially encourages those who have not spoken at a conference before.
4222May 17 · 12:50 AM
Kinnaird McQuade💥☁️ @kmcquade3
To those who are saying that they might have upgraded their hashing algorithms - yes, you’re right.
I am still often skeptical when I see a message like that. Especially when the site has some suspicious restrictions on which special characters you can’t use in your password
493May 10 · 5:26 PM Clint Gibler @clintgibler
✍️ tfsec VS @code extension
Scan your Terraform code for security issues right in your IDE
H/T @owenrum
marketplace.visualstudio.com/items?itemName…
3213May 12 · 12:00 AM Kinnaird McQuade💥☁️ @kmcquade3
The CDC said fully vaccinated people can use wildcards in their IAM policies because they’re privileged
365May 14 · 4:33 PM Ian Mckay @iann0036
Well that was fun while it lasted. Please fix your service AWS 😡. 13/13
380May 11 · 10:10 AM
Aidan W Steele @__steele
AWS CDK folks: am I the only one who finds it far, far more challenging to define a Step Function in CDK than using YAML?
251May 15 · 1:30 AM
Brigid Johnson @bjohnso5y
Didn't workout for one week. Spider moved in behind my weights 🏋️♀️. You win Spider it's your workout basement now. 🕷️
230May 15 · 12:27 AM
A favor for AWS: one way to display date and time
There are many places where a time stamp is displayed, in some places you can set to convert the time in your local time zone in other there are no options. This makes it very confusing when you are looking for something, since you never know in which format a …
SR Solutions Architect interview tomorrow!
I’ve never prepared for an interview quite like this one! I think I’ve spent 30 hrs or so preparing notes and fact checking my notes for technical errors. I’ve never been more excited and nervous in my life! Hopefully my 10 years of IT experience will pay off.
Biggest cloud security issues you see
What are the biggest cloud security issues you see when it comes to infrastructure deployments?
Is it the old "open ports"? Is it something new?
Curious here.
- 🖊️ This newsletter was fwd to you? Subscribe here
- 💌 Want to suggest new content: contact me or reply to this email
- ⚡️ Powered by Mailbrew