AWS Morning Brief

AWS Morning Brief for the week of May 8, 2023 with Corey Quinn. Links:Announcing Provisioned Capacity for Amazon AthenaAmazon EFS Replication is now available in all AWS RegionsAmazon Redshift launches ra3.xlplus instances in additional Middle East, Europe and Asia Pacific Regions AWS Compute Optimizer now supports filtering by tagsAWS Console Mobile Application launches push notificationsAnnouncing AWS User Notifications general availability Process price transparency data using AWS Glue Patterns for building an API to upload files to Amazon S3Improve query performance and reduce cost using scheduled queries in Amazon TimestreamWorking with JSON data in Amazon DynamoDB The history and future roadmap of the AWS CloudFormation Registry Partnerships extend Just Walk Out technology to more colleges and universitiesQuickly build high-accuracy Generative AI applications on enterprise data using Amazon Kendra, LangChain, and large language models Introducing AWS Verified Access – General Availability 

Last week in security news: Tailscale now offers network flow logs, Google had a GhostToken flaw, AWS reported an issue with IAM supporting multiple MFA devices, and more!Links:Tailscale now offers network flow logsGoogle had a GhostToken flaw that let attackers backdoor Google accounts.The folks at SADA found a major bug in Google Cloud; apparently it had the potential to expose the private keys for Google Cloud Service AccountsIssue With IAM Supporting Multiple MFA DevicesThis week in Tools: It's been a while since I linked to CloudMapper

AWS Morning Brief for the week of May 1, 2023 with Corey Quinn. Links:Condolences to my AWS friends affected by last week's layoffs; if I can help, please let me know.Amazon CloudWatch Logs data protection is now available in all AWS Commercial Regions AWS Firewall Manager adds support for multiple administratorsAWS Systems Manager now supports AWS Cloud Development Kit (CDK) applications Working with percolators in Amazon OpenSearch Service AWS Lambda now supports Java 17Optimizing Amazon EC2 Spot Instances with Spot Placement Scores Optimize costs by scheduling provisioned capacity for Amazon DynamoDBPerform intelligent search across emails in your Google workspace using the Gmail connector for Amazon Kendra Best practices and considerations to migrate from VPC Peering to AWS Transit Gateway

Last week in security news: Dealing with Ransomware in the Cloud, Pen Testing AWS, How to prioritize IAM Access Analyzer findings, and more!Links:Last Week in AWS job board AWS had two (minor) Cross-Tenant Vulnerabilities within AWS App Runner.Some company called Invictus has practical experience dealing with ransomware in the cloudChris Farris has a post on Pen Testing AWS.Dark Reading posits that Security Is a Revenue Booster, Not a Cost Center.An Attacker's Perspective on AWS Account IDsHow to prioritize IAM Access Analyzer findings Scale your authorization needs for Secrets Manager using ABAC with IAM Identity CenterNetchecks is a way of programmatically verifying your security controls.I love CloudTrail Lake, and this repository of query samples makes it easier for me to use it.IAMbic offers "GitOps for IAM."

AWS Morning Brief Extras edition for the week of April 26, 2023.Want to give your ears a break and read this as an article? You’re looking for this link.https://www.lastweekinaws.com/blog/why-aws-might-be-the-next-backbone-providerNever miss an episodeJoin the Last Week in AWS newsletterSubscribe wherever you get your podcastsHelp the showLeave a reviewShare your feedbackSubscribe wherever you get your podcastsBuy our merch https://store.lastweekinaws.comWhat's Corey up to?Follow Corey on Twitter (@quinnypig)See our recent work at the Duckbill GroupApply to work with Corey and the Duckbill Group to help lower your AWS bill

AWS Morning Brief for the week of April 24, 2023 with Corey Quinn. Links:If you're around tomorrow night (Tuesday) at 6PM, I'll be at The Ramp in SF; let me buy you a drink.Announcing Dev Environment dashboard for Amazon CodeCatalyst (Preview) Amazon DynamoDB now supports up to 50 concurrent table restoresAmazon EC2 supports Ubuntu Pro operating system in a subscription-included modelAmazon EFS now supports up to 10 GiB/s of throughput Increased visibility of your carbon emissions data with AWS Customer Carbon Footprint ToolPython 3.10 runtime now available in AWS Lambda Understanding techniques to reduce AWS Lambda costs in serverless applicationsUse Amazon DynamoDB global tables in DynamoDB Shell Announcing General Availability of Amazon CodeCatalyst 

Last week in security news: Creating an AWS Backup Account, Azure had another cross-tenant access vulnerability, Security Hub Hurts My Self-Esteem, and more!Links:Corey hosted a partner panel at AWS Container Day at KubeCon This post on using OIDC to secure your CI/CD pipelines mirrors what I did with GitHub actions a year or so ago.Teri Radichel has a piece on Creating an AWS Backup AccountSlack is conducting an absolute masterclass in how to screw up messaging to your target audience.Azure had another cross-tenant access vulnerabilitySecurity Hub Hurts My Self-EsteemAWS Security Profile: Matt Luttrell, Principal Solutions Architect for AWS IdentityTool of the Week: iamlive 

AWS Morning Brief for the week of April 17, 2023 with Corey Quinn. This week is RSA in San Francisco; I'll be haunting the expo hall at some point, so if you're in town say hi.Links:The Last Week in AWS Job Board continues to thrive; thanks for your ongoing support.Amazon Chime SDK updates Service Level AgreementAmazon CodeWhisperer is now generally availableAmazon Connect now enables agents to handle voice calls, chats, and tasks concurrentlyAmazon EC2 Serial Console is now available on EC2 bare metal instances Amazon RDS for MySQL now supports up to 15 read replicas for RDS Multi-AZ deployment option with two readable standby database instancesAWS Graviton2-based Amazon EC2 instances are available in additional regions AWS Ground Station now supports Wideband Digital Intermediate FrequencyAWS Lambda adds support for Node.js 18 in the AWS GovCloud (US) Regions Introducing AWS Lambda response streaming Understanding Amazon DynamoDB latency Announcing New Tools for Building with Generative AI on AWSAWS Now Supports Credentials-fetcher for gMSA on Amazon Linux 2023 AWS investment in South Africa results in economic ripple effect New Global AWS Data Processing Addendum 15 cool things we found inside the Spheres, Amazon’s urban rainforest in downtown Seattle 

Last week in security news: Logging strategies for security incident response, A Department of Energy report shows some rather serious gaps in security monitoring, A dedicated repository of winners of the S3 Bucket Negligence Awards, and more!Links:Zoom took an outage and the message was clearly AWS generated. Root cause? Misconfigured SCP.A Department of Energy report shows some rather serious gaps in the security monitoring of their cloud environments.Logging strategies for security incident responseReduce triage time for security investigations with Amazon Detective visualizations and export dataTLS inspection configuration for encrypted traffic and AWS Network FirewallA dedicated repository of winners of the S3 Bucket Negligence Awards.

AWS Morning Brief Extras edition for the week of April 12, 2023.Want to give your ears a break and read this as an article? You’re looking for this link.https://www.lastweekinaws.com/blog/localstack-why-local-development-for-cloud-workloads-makes-senseNever miss an episodeJoin the Last Week in AWS newsletterSubscribe wherever you get your podcastsHelp the showLeave a reviewShare your feedbackSubscribe wherever you get your podcastsBuy our merch https://store.lastweekinaws.comWhat's Corey up to?Follow Corey on Twitter (@quinnypig)See our recent work at the Duckbill GroupApply to work with Corey and the Duckbill Group to help lower your AWS bill