Issue #57
Monday · February 14, 2022
π₯ AWS security blogs
- C5 Type 2 attestation report now available with 141 services in scope β Amazon Web Services (AWS) is pleased to announce the issuance of the new Cloud Computing Compliance Controls Catalogue (C5) Type 2 attestation report. We added 18 additional services and service features to the scope of the 2021 report. Germanyβs national cybersecurity authority, Bundesamt fΓΌr Sicherheit in der Informationstechnik (BSI), established β¦
π Reddit threads on r/aws
- We started using AWS SSO with external apps - there is no api so i had to automate the creation of over 500 apps
- Terraform AWS Provider 4.0
- A magical AWS serverless developer experience
- Best Practices for AWS Organizations Service Control Policies in a Multi-Account Environment
- Introducing AWS Virtual Waiting Room
π Newsletters
π Top Links from Security Folks
- Release v4.0.0 Β· hashicorp/terraform-provider-aws β BREAKING CHANGES: data-source/aws_connect_hours_of_operation: The hours_of_operation_arn attribute is renamed to arn (#22375) resource/aws_batch_compute_environment: No compute_resources configura...
π r/netsec
π r/cloudsecurity
- AWS Cloud Security challenge - 1 β Hey folks, Starting these random challenges for people to try out and learn cloud hacking. You can start the hunt from s3-challenge-1 bucket. :) β Have fun !
π "AWS Security" on Google News
π§ IAM permission changes
- ds: 1 new action | 4 updated actions β 1 new action: DescribeClientAuthenticationSettings (retrieve information about the type of client authentication for the specified directory, if the type is specified. if no type is specified, information about all client authentication types that are supported for the specified directory is retrieved. currently, only smartcard is supported); 4 updated actions: ConnectDirectory β¦
- quicksight: 2 new actions β 2 new actions: AccountConfigurations (to enable setting default access to aws resources), ScopeDownPolicy (scoping policies for permissions to aws resources)
- cloudformation: 1 new action β 1 new action: DescribeChangeSetHook (return the hook invocation information for the specified change set)
πͺ API changes
- AWS CloudFormation - 1 updated methods β This SDK release adds AWS CloudFormation Hooks HandlerErrorCodes
- Amazon Pinpoint - 4 updated methods β This SDK release adds a new paramater creation date for GetApp and GetApps Api call
- AWS WAFV2 - 3 new 8 updated methods β Adds support for AWS WAF Fraud Control account takeover prevention (ATP), with configuration options for the new managed rule group AWSManagedRulesATPRuleSet and support for application integration SDKs for Android and iOS mobile apps.
- AWS CloudFormation - 1 new 15 updated methods β This SDK release is for the feature launch of AWS CloudFormation Hooks.
