Issue #50
Monday · December 20, 2021
π₯ AWS security blogs
- Continuous runtime security monitoring with AWS Security Hub and Falco β Customers want a single and comprehensive view of the security posture of their workloads. Runtime security event monitoring is important to building secure, operationally excellent, and reliable workloads, especially in environments that run containers and container orchestration platforms. In this blog post, we show you how to use services such β¦
- Using AWS security services to protect against, detect, and respond to the Log4j vulnerability β December 17, 2021: The blog has been updated to include using Athena to query VPC flow logs. December 16, 2021: The Respond section of the post has been updated to include IMDSv2 and container mitigation info. Overview In this post we will provide guidance to help customers who are responding β¦
- Open source hotpatch for Apache Log4j vulnerability β December 14, 2021:The version 2.15 Log4j was updated to the new version out today. At Amazon Web Services (AWS), security remains our top priority. As we addressed the Apache Log4j vulnerability this weekend, Iβm pleased to note that our team created and released a hotpatch as an interim mitigation step. β¦
π Reddit threads on r/aws
- Another AWS outage? β Unable to access any of our resources in us-west-2 across multiple accounts at the moment
- Using AWS security services to protect against, detect, and respond to the Log4j vulnerability
- Today I learned "Classic PostgreSQL on RDS beats Aurora in Benchmarks" β One of my client wanted 5000IOPS for peak hours but at the cheaper costs. We tried RDS Provisioning for 5000IOPS but the costs had skyrocketed. After researching I found this medium link I got to know RDS+1TB storage gives better performance than Aurora at 3000IOPS and that too at cheaper β¦
- Using Route53 as a Key Value Store in GitHub Actions
- Lessons in Trust From us-east-1
π Newsletters
π Top Links from Security Folks
- Snaring the Bad Folks - Netflix TechBlog β Project by Netflixβs Cloud Infrastructure Security team (Alex Bainbridge, Mike Grima, Nick Siow)
- GitHub - Cybereason/Logout4Shell: Use Log4Shell vulnerability to vaccinate a victim server against Log4Shell β Use Log4Shell vulnerability to vaccinate a victim server against Log4Shell - GitHub - Cybereason/Logout4Shell: Use Log4Shell vulnerability to vaccinate a victim server against Log4Shell
π r/netsec
π r/cloudsecurity
- Azure CSPM Coding Doubt β Hey, my boss told me to start working on the Azure CSPM integration for our product. I don't have a lot of experience with cloud security. I have experience with information security only. Also, did a project on AWS integration. I'm very confused about Azure. I don't really know where β¦
π "AWS Security" on Google News
