Issue #36
Monday · September 13, 2021
π₯ AWS security blogs
- How US federal agencies can use AWS to encrypt data at rest and in transit β This post is part of a series about how Amazon Web Services (AWS) can help your US federal agency meet the requirements of the Presidentβs Executive Order on Improving the Nationβs Cybersecurity. You will learn how you can use AWS information security practices to meet the requirement to encrypt your β¦
- 17 additional AWS services authorized for DoD workloads in the AWS GovCloud Regions β Iβm pleased to announce that the Defense Information Systems Agency (DISA) has authorized 17 additional Amazon Web Services (AWS) services and features in the AWS GovCloud (US) Regions, bringing the total to 105 services and major features that are authorized for use by the U.S. Department of Defense (DoD). AWS β¦
π Reddit threads on r/aws
- AWS is now requiring all attendees to re:invent to show proof that they're fully vaccinated and wear masks when not eating or drinking
- Serverless DNS driven on-demand Minecraft server with Route53+Fargate+EFS
- EKS Anywhere is GA
- Terraform vs CDK in 2022 β Learning Terraform but wanted to ask you guys if CDK is looking to take over or not. I personally find CDK harder to setup because some constructs requires setting up a VPC which isn't easy for an AWS newcomer. Terraform is straightforward so far at least, but I will focus β¦
- AWS SQS vs SNS vs Eventbridge - When to Use What?
π Newsletters
π AWS Security by CloudNews
- AWS Firewall Manager Automations for AWS Organizations v1.1 is now available β The AWS Firewall Manager Automations for AWS Organizations solution allows you to centrally configure, manage, and audit firewall rules across all your accounts and resources in AWS Organizations. This solution is a reference implementation to automate the process to setup AWS Firewall Manager security policies. This solution supersedes AWS Centralized β¦
- Amazon Detective offers Splunk integration β Amazon Detective, in coordination with the Splunk Trumpet project, has released the ability to pivot from an Amazon GuardDuty finding in Splunk directly to an Amazon Detective entity profile so that customers can quickly identify the root cause of potential security issues or suspicious activities.
π AWS IAM Release Notes
- IAM Access Analyzer supports Amazon S3 Multi-Region Access Points β IAM Access Analyzer identifies Amazon S3 buckets that allow public and cross-account access, including those that use Amazon S3 Multi-Region Access Points .
- AWS managed policy updates - Update to an existing policy β IAM Access Analyzer updated an existing AWS managed policy.
- More services supported for action-level policy generation β IAM Access Analyzer can generate IAM policies with action-level access activity information for additional AWS services.
π r/netsec
π r/cloudsecurity
- Which are good tools to detect threats on cloud environment, web servers? β Hi, I have debian application servers, load balancers, databases, fileservers etc. in a cloud. Which are the alternatives for Splunk kind of threat detection tool which analyzes logs?
π "AWS Security" on Google News
π§ IAM permission changes
- mediapackage-vod: 1 new action β 1 new action: ConfigureLogs (configure egress access logs for a packaginggroup)
- ssm: 1 updated action | 1 removed condition β 1 updated action: StartSession (conditions)
- es: 2 new actions | 1 updated resource, 2 updated actions | 4 removed actions, 1 removed resource β 2 new actions: StartServiceSoftwareUpdate (start opensearch software update of a domain to given version), UpgradeDomain (initiate upgrade of open search domain to given version); 1 updated resource: opensearchservice_role (arn); 2 updated actions: DescribeDomainAutoTunes (description, resources), CancelServiceSoftwareUpdate (description, resources)
- mediapackage: 1 new action β 1 new action: ConfigureLogs (configure access logs for a channel)
πͺ API changes
- Amazon CodeGuru Reviewer - 1 updated methods β The Amazon CodeGuru Reviewer API now includes the RuleMetadata data object and a Severity attribute on a RecommendationSummary object. A RuleMetadata object contains information about a rule that generates a recommendation. Severity indicates how severe the issue associated with a recommendation is.
- Amazon EMR - 3 updated methods β This release enables customers to login to EMR Studio using AWS Identity and Access Management (IAM) identities or identities in their Identity Provider (IdP) via IAM.
- Amazon Lookout for Equipment - 2 updated methods β Added OffCondition parameter to CreateModel API
- Managed Streaming for Kafka - 1 new 5 updated methods β Amazon MSK has added a new API that allows you to update the encrypting and authentication settings for an existing cluster.
