Issue #46
Monday · November 22, 2021
π₯ AWS security blogs
- How to set up Amazon Cognito for federated authentication using Azure AD β In this blog post, Iβll walk you through the steps to integrate Azure AD as a federated identity provider in Amazon Cognito user pool. A user pool is a user directory in Amazon Cognito that provides sign-up and sign-in options for your app users. Identity management and authentication flow can β¦
- Hands-on walkthrough of the AWS Network Firewall flexible rules engine β Part 2 β This blog post is Part 2 of Hands-on walkthrough of the AWS Network Firewall flexible rules engine β Part 1. To recap, AWS Network Firewall is a managed service that offers a flexible rules engine that gives you the ability to write firewall rules for granular policy enforcement. In Part β¦
- Everything you wanted to know about trusts with AWS Managed Microsoft AD β Many Amazon Web Services (AWS) customers use Active Directory to centralize user authentication and authorization for a variety of applications and services. For these customers, Active Directory is a critical piece of their IT infrastructure. AWS offers AWS Directory Service for Microsoft Active Directory, also known as AWS Managed Microsoft β¦
- Fall 2021 SOC reports now available with 141 services in scope β At Amazon Web Services (AWS), weβre committed to providing our customers with continued assurance over the security, availability and confidentiality of the AWS control environment. Weβre proud to deliver the System and Organizational (SOC) 1, 2, and 3 reports to enable our AWS customers to maintain confidence in AWS services. β¦
π Reddit threads on r/aws
- Hidden AWS Console Dark Mode β Hello fine folks, I found a little gem in the aws console cookie. Navigate to console.aws.amazon.com , open the chrome dev console, and navigate to the Application -> Cookies section. You should see an entry for "awsc-color-theme", default value being "light". Just change this to "dark" and refresh! https://preview.redd.it/alucgdj5t1081.png?width=853&format=png&auto=webp&s=49028e4c47a12f82b5be954f38dcc4ddfd20975b
- Got hacked and found a 30k bill. Please turn on MFA if/when you start using AWS. β Randomly got an email saying my card got declined after AWS tried to charge me 19k for last month's usage. I totally forgot I even had an aws account. I created mine a year ago for a mini hackathon that lasted for 3 days and forgot about it after it β¦
- Lambda function URLs - AWS Lambda
- See everything you have in AWS with standard SQL and Grafana
- The favorites bar in the navigation pane is back!
π Newsletters
π AWS Security by CloudNews
- Amazon Cognito launches new console experience for user pools β Amazon Cognito now offers a new console experience that makes it even easier for customers to manage Amazon Cognito user pools and add sign-in and sign-up functionality to their applications. Customers that wish to opt in to the new and streamlined experience can do so by navigating to the Amazon β¦
π AWS IAM Release Notes
- Updates to policy evaluation logic flow chart β Updates to the policy evaluation logic flow chart and related text in the Determining whether a request is allowed or denied within an account section.
π r/netsec
π "AWS Security" on Google News
π§ IAM permission changes
- forecast: 10 new actions, 2 new resources | 12 updated actions β 10 new actions: CreateAutoPredictor (create an auto predictor), CreateExplainability (create an explainability), CreateExplainabilityExport (create an explainability export using an explainability resource), DeleteExplainability (delete an explainability), DeleteExplainabilityExport (delete an explainability export), DescribeAutoPredictor (describe an auto predictor), DescribeExplainabilityExport (describe an explainability export), DescribeExplainablity (describe an explainability), ListExplainabilities (list all the explainabilities), ListExplainabilityExports β¦
- s3: 3 updated actions | 1 removed condition β 3 updated actions: BypassGovernanceRetention (conditions), PutObject (conditions), ReplicateObject (conditions)
- databrew: 5 new actions, 1 new resource | 3 updated actions β 5 new actions: CreateRuleset (create a ruleset), DeleteRuleset (delete a ruleset), DescribeRuleset (view details about a ruleset), ListRulesets (list rulesets in your account), UpdateRuleset (modify a ruleset); 1 new resource: Ruleset; 3 updated actions: ListTagsForResource (resources), TagResource (resources), UntagResource (resources)
πͺ API changes
- Amazon AppConfig - 4 updated methods β Add Type to support feature flag configuration profiles
- AWS Audit Manager - 6 new 1 updated methods β This release introduces a new feature for Audit Manager: Dashboard views. You can now view insights data for your active assessments, and quickly identify non-compliant evidence that needs to be remediated.
- Amazon Chime - 1 updated methods β Adds new Transcribe API parameters to StartMeetingTranscription, including support for content identification and redaction (PII & PHI), partial results stabilization, and custom language models.
- Amazon Chime SDK Meetings - 1 updated methods β Adds new Transcribe API parameters to StartMeetingTranscription, including support for content identification and redaction (PII & PHI), partial results stabilization, and custom language models.
