Issue #37
Monday · September 20, 2021
π₯ AWS security blogs
- How to automate incident response to security events with AWS Systems Manager Incident Manager β Incident response is a core security capability for organizations to develop, and a core element in the AWS Cloud Adoption Framework (AWS CAF). Responding to security incidents quickly is important to minimize their impacts. Automating incident response helps you scale your capabilities, rapidly reduce the scope of compromised resources, and β¦
- New Standard Contractual Clauses now part of the AWS GDPR Data Processing Addendum for customers β Today, weβre happy to announce an update to our online AWS GDPR Data Processing Addendum (AWS GDPR DPA) and our online Service Terms to include the new Standard Contractual Clauses (SCCs) that the European Commission (EC) adopted in June 2021. The EC-approved SCCs give our customers the ability to comply β¦
- Disaster recovery compliance in the cloud, part 2: A structured approach β Compliance in the cloud is fraught with myths and misconceptions. This is particularly true when it comes to something as broad as disaster recovery (DR) compliance where the requirements are rarely prescriptive and often based on legacy risk-mitigation techniques that donβt account for the exceptional resilience of modern cloud-based architectures. β¦
- Disaster recovery compliance in the cloud, part 1: Common misconceptions β Compliance in the cloud can seem challenging, especially for organizations in heavily regulated sectors such as financial services. Regulated financial institutions (FIs) must comply with laws and regulations (often in multiple jurisdictions), global security standards, their own corporate policies, and even contractual obligations with their customers and counterparties. These various β¦
π Reddit threads on r/aws
- How Amazon Web Services makes money: Estimated margins by service
- AWS federation comes to GitHub Actions
- Former AWS veteran Charlie Bell to head cybersecurity ops at Microsoft
- Abusing AWS Lambda to make an Aussie Search Engine
- Can someone eli5 why I should or should not switch to awscli-v2? β What are the practical differences between awscli v1 and v2? AFAIK the main difference is that v2 is much more of a pain to install (why is it?) Why is v2 not pip installable?
π Newsletters
π AWS Security by CloudNews
- AWS Firewall Manager now supports AWS WAF rate-based rules β AWS Firewall Manager now enables customers to centrally deploy AWS WAF rate-based rulesand, nbsp;across accounts in their organization. An AWS WAF rate-based rule allows customers to track the rate of requests for each originating IP address and trigger a rule action on IPs once it goes over the limit. With β¦
π Top Links from Security Folks
- AWS federation comes to GitHub Actions β At the time of writing, this functionality exists but has yet to be announced or documented. It works, though!
- GitHub - BishopFox/iam-vulnerable: Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground. β Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground. - GitHub - BishopFox/iam-vulnerable: Use Terraform to create your own vulnerable β¦
- GitHub - iann0036/iam-dataset: A consolidated AWS IAM dataset β A consolidated AWS IAM dataset. Contribute to iann0036/iam-dataset development by creating an account on GitHub.
- permissions.cloud β Permissions Reference for AWS IAM
π r/netsec
π r/cloudsecurity
- Where to post cloud security related roles? β I was wondering if there were any specific job boards that are better than others for posting cloud security related roles.
π "AWS Security" on Google News
- 10 AWS security tips to secure your environment - Web Hosting | Cloud Computing | Datacenter | Domain News - Daily Host News
- Former AWS exec Charlie Bell to head new Microsoft Security, Compliance, Identity, and Management org - ZDNet
- What's Coming & Best Practices for AWS Security and Backup & Recovery - Virtualization Review
π§ IAM permission changes
- kafkaconnect: 11 new actions, 3 new resources β 11 new actions: CreateConnector (create an msk connect connector), CreateCustomPlugin (create an msk connect custom plugin), CreateWorkerConfiguration (create an msk connect worker configuration), DeleteConnector (delete an msk connect connector), DescribeConnector (describe an msk connect connector), DescribeCustomPlugin (describe an msk connect custom plugin), DescribeWorkerConfiguration (describe an msk connect worker configuration), ListConnectors β¦
- finspace: 14 new actions, 2 new resources, 3 new conditions β 14 new actions: CreateEnvironment (create a finspace environment), CreateUser (create a finspace user.), DeleteEnvironment (delete a finspace environment.), DeleteUser (delete a finspace user.), GetEnvironment (describe a finspace environment.), GetLoadSampleDataSetGroupIntoEnvironmentStatus (request status of the loading of sample data bundle.), GetUser (describe a finspace user.), ListEnvironments (list finspace environments in the aws β¦
- snowball: 3 new actions β 3 new actions: CreateLongTermPricing (creates a longtermpricinglistentry for allowing customers to add an upfront billing contract for a job), ListLongTermPricing (list longtermpricinglistentry objects for the account making the request), UpdateLongTermPricing (update a specific upfront billing contract for a job)
- sqs: 1 updated action | 3 removed actions β 1 updated action: ListQueues (access)
πͺ API changes
- Managed Streaming for Kafka Connect - 11 new methods β This is the initial SDK release for Amazon Managed Streaming for Apache Kafka Connect (MSK Connect).
- Amazon Macie 2 - 1 new 2 updated methods β This release adds support for specifying which managed data identifiers are used by a classification job, and retrieving a list of managed data identifiers that are available.
- Amazon Pinpoint - 5 new 28 updated methods β This SDK release adds a new feature for Pinpoint campaigns, in-app messaging.
- AWS RoboMaker - 8 updated methods β Adding support to create container based Robot and Simulation applications by introducing an environment field
