AWS Morning Brief

AWS Morning Brief for the week of July 3, 2023 with Corey Quinn. Links:AWS Lambda simplifies copying environment variables in the console code editorWhat is a spam trap and why you should care?How we learned to program with atoms in 24 hours flat Running an SSH server on AWS RoboMakerNew training series: Starting your Career with AWS CloudAWS to remove 62,000-message Simple Email Service 'always free' tier from August 2023AWS continues to invest in Ohio The INFORM Consumers Act takes effect on June 27. Here's how Amazon is protecting our customers and sellers from bad actors.

Last week in security news: 'Muddled Libra' Uses Oktapus-Related Smishing to Target Outsourcing Firms, Issue with AWS Directory Service EnableRoleAccess, S3 buckets being used in attacks on npm packages, and more!Links:This collection of best practices for managing root users at scale in AWS is worth a read'Muddled Libra' Uses Oktapus-Related Smishing to Target Outsourcing Firms.1Health is this week's winner of the S3 Bucket Negligence AwardBarracuda advises customers to rip the entire device out, throw it away, and replace it entirely. S3 buckets being used in attacks on npm packagesIssue with AWS Directory Service EnableRoleAccessTool of the week: xeol is an end-of-life package scanner. 

AWS Morning Brief for the week of June 26, 2023 with Corey Quinn. Links:The FTC comment period about the business of cloud computing endedAmazon warehouse practices are now the focus of a senate probeThe FTC is suing Amazon for its Prime enrollment dark patternsAmazon’s iRobot acquisition is now the subject of an EU investigationThe launch of Amazon Clinic is being delayed after the senate asked some hard questionsAnnouncing Amazon EC2 Hpc7g instances AWS Lambda supports starting from timestamp for Kafka event sourcesAWS Step Functions launches Versions and Aliases AWS Transfer Family announces structured JSON log format5 Stages to Building a Successful Partner Practice with AWSSay Hello to 176 AWS Competency, Service Delivery, Service Ready, and MSP Partners Added or Renewed in MayHow GoDaddy Implemented a Multi-Region Event-Driven Platform at ScaleNew Amazon EC2 C7gn Instances: Graviton3E Processors and Up To 200 Gbps Network BandwidthFor actual technical depth, my thanks to David Cuthbert in the Last Week in AWS Slack Community for surfacing this AnandTech article.Stream VPC Flow Logs to Datadog via Amazon Kinesis Data FirehoseCreating real-time flood alerts with the cloudUse AWS Private Certificate Authority to issue device attestation certificates for MatterShould I use the hosted UI or create a custom UI in Amazon Cognito? - Trick question, you should use recurring Last Week in AWS sponsor FusionAuth instead. Coming soon: updates to AWS Certified Cloud Practitioner examHow I achieved all six specialty AWS Certifications on first attemptHow to win a $5 Amazon Gift Card, just by signing up for the Amazon News newsletter 

Last week in security news: Videos from fwd:cloudsec are now available on YouTube, AWS announces AWS Payment Cryptography, Amazon CodeGuru Security is now available in preview, and more!Links:There was lots of great content presented at fwd:cloudsec.  The day-long videos are up on YouTube. You can use the schedule to help find the talks you're interested in.In contrast to AWS's "Shared Responsibility Model", I appreciate GCP's "Shared Fate Model" where they put their own skin in the game in ensuring their customers are protected.  In their New Cryptomining Protection Program, they offer $1M in what is basically an insurance policy that comes with Security Command Center Premium.Bob McMillan from the WSJ reports that North Korean hackers have stolen more than $3 billion in crypto over the last 5 years, and their heists are now funding fully half of its ballistic missile program.a16z writes Hiring a Chief Information Security Officer.Removing header remapping from Amazon API Gateway, and notes about our work with security researchers - AWS made a breaking change to respond to a security issue. The security researchers that found the issue wrote their side of the story, describing it as AWS API Gateway header smuggling and cache confusion.Issue with AWS Directory Service EnableRoleAccess - AWS released a security bulletin for this issue, which they seem to do at random for security issues. Ben Bridts from Cloudar found and reported this issue which AWS has fixed.  He goes into more detail in his blog post and in a talk at fwd:cloudsec.Amazon CloudWatch Logs data protection account level policy configurationAWS WAF Fraud Control launches account creation fraud prevention and reduced pricingAWS announces AWS Payment CryptographyAWS Transfer Family announces quantum-safe key exchange for SFTPAmazon CodeGuru Security is now available in previewAmazon Inspector announces the general availability of Code Scans for AWS Lambda functionAWS announces Software Bill of Materials export capability in Amazon InspectorAmazon EC2 Instance Connect supports SSH and RDP connectivity without public IP addressAmazon GuardDuty enhances console experience with findings summary viewAmazon Detective extends finding groups to Amazon InspectorAmazon S3 announces dual-layer server-side encryption for compliance workloadsAWS CloudTrail Lake launches curated dashboards for visualizing top CloudTrail trendsAWS IAM Identity Center now supports automated user provisioning from Google Workspace

AWS Morning Brief Extras edition for the week of June 21, 2023.Want to give your ears a break and read this as an article? You’re looking for this link.https://www.lastweekinaws.com/blog/ftc-request-answered-how-cloud-providers-do-businessNever miss an episodeJoin the Last Week in AWS newsletterSubscribe wherever you get your podcastsHelp the showLeave a reviewShare your feedbackSubscribe wherever you get your podcastsBuy our merch https://store.lastweekinaws.comWhat's Corey up to?Follow Corey on Twitter (@quinnypig)See our recent work at the Duckbill GroupApply to work with Corey and the Duckbill Group to help lower your AWS bill

AWS Morning Brief for the week of June 20th, 2023 with Scott Piper filling in for Corey Quinn. Links:AWS announces scripts to bulk updates policies per new AWS Billing and Cost Management permissions Amazon QuickSight now supports APIs to automate and accelerate assets deploymentAmazon Rekognition improves face search accuracy with user vectorsAWS Config supports recording exclusions by resource typeFalcon 40B foundation model from TII available on SageMaker JumpStartAmazon EMR supports price-capacity-optimized allocation strategy for EC2 Spot InstancesAmazon Verified Permissions is now generally availableAnnouncing Live Tail in Amazon CloudWatch Logs, providing real-time exploration of logsaidansteele/rdsconn

Last week in security news: CloudFlare had a Confused Deputy Vulnerability, Moving Away from IAM Identity Center, AWS KMS now supports importing asymmetric and HMAC keys, and more!Links:CloudFlare had a Confused Deputy Vulnerability As I move away from IAM Identity Center, I find it interesting that a lot of folks I respect are doing similar things.I was going to drag this otherwise awesome article disclosing the vulnerability they located within AWS CDK's eks.Cluster component.AWS KMS now supports importing asymmetric and HMAC keys Tool/ Tip of the week: List of documented and undocumented AWS API models 

AWS Morning Brief for the week of June 12, 2023 with Corey Quinn. Links:AWS CloudTrail Lake now supports selective start or stop ingestion of CloudTrail events AWS Glue for Ray is now generally available AWS Lambda adds support for Ruby 3.2AWS Mainframe Modernization service is now HIPAA eligibleAnnouncing AWS Snowblade for U.S Department of Defense JWCCAWS Trusted Advisor adds new checks for Amazon EFSAnnouncing the general availability of AWS Database Migration Service ServerlessAnnouncing Live Tail in Amazon CloudWatch Logs, providing real-time exploration of logsAWS announces scripts to bulk updates policies per new AWS Billing and Cost Management permissions Drug Analyzer on AWS Provides Analytics That Inform Treatment Decisions and Support New TherapiesSelecting cost effective capacity reservations for your business-critical workloads on Amazon EC2Announcing Container Image Signing with AWS Signer and Amazon EKS How to deploy workloads in a multicloud environment with AWS developer toolsHow businesses can gain ecommerce capabilities to increase sales A Guide to Maintaining a Healthy Email Database Using Amazon IVS for turnkey town hallsAWS’s long-term commitment to VirginiaHow AWS data centers reuse retired hardware

Last week in security news: Thinkst Canary's Thinkstscapes, Multiple S3 Bucket Negligence Awards, Credit Card Payment Processing on AWS, and more!Links:Thinkst Canary's ThinkstscapesIt's been a while since we've seen a strong, confirmed S3 Bucket Negligence Award, but Toyota has a massive one dating back a decade.Oof, looks like Google's CloudSQL product had a vulnerability that would allow an attacker to escalate to GCP control plane permissions.Holy... Legion malware expands scope to target AWS CloudWatch as well.When it rains, it pours; Capita had an S3 Bucket Negligence Award as well!Credit Card Payment Processing on AWS - Don't do it. Pay Stripe. Amazon Security Lake is now generally availableAnnouncing the AWS Blueprint for Ransomware Defense Get custom data into Amazon Security Lake through ingesting Azure activity logs Tip of the week: When you're starting something new that might turn into a company, use SSO.

AWS Morning Brief Extras edition for the week of June 7, 2023.Want to give your ears a break and read this as an article? You’re looking for this link.https://www.lastweekinaws.com/blog/17-final-ways-to-run-containers/Never miss an episodeJoin the Last Week in AWS newsletterSubscribe wherever you get your podcastsHelp the showLeave a reviewShare your feedbackSubscribe wherever you get your podcastsBuy our merch https://store.lastweekinaws.comWhat's Corey up to?Follow Corey on Twitter (@quinnypig)See our recent work at the Duckbill GroupApply to work with Corey and the Duckbill Group to help lower your AWS bill