AWS Morning Brief

AWS Morning Brief for the week of May 1, 2023 with Corey Quinn. Links:Condolences to my AWS friends affected by last week's layoffs; if I can help, please let me know.Amazon CloudWatch Logs data protection is now available in all AWS Commercial Regions AWS Firewall Manager adds support for multiple administratorsAWS Systems Manager now supports AWS Cloud Development Kit (CDK) applications Working with percolators in Amazon OpenSearch Service AWS Lambda now supports Java 17Optimizing Amazon EC2 Spot Instances with Spot Placement Scores Optimize costs by scheduling provisioned capacity for Amazon DynamoDBPerform intelligent search across emails in your Google workspace using the Gmail connector for Amazon Kendra Best practices and considerations to migrate from VPC Peering to AWS Transit Gateway

Last week in security news: Dealing with Ransomware in the Cloud, Pen Testing AWS, How to prioritize IAM Access Analyzer findings, and more!Links:Last Week in AWS job board AWS had two (minor) Cross-Tenant Vulnerabilities within AWS App Runner.Some company called Invictus has practical experience dealing with ransomware in the cloudChris Farris has a post on Pen Testing AWS.Dark Reading posits that Security Is a Revenue Booster, Not a Cost Center.An Attacker's Perspective on AWS Account IDsHow to prioritize IAM Access Analyzer findings Scale your authorization needs for Secrets Manager using ABAC with IAM Identity CenterNetchecks is a way of programmatically verifying your security controls.I love CloudTrail Lake, and this repository of query samples makes it easier for me to use it.IAMbic offers "GitOps for IAM."

AWS Morning Brief Extras edition for the week of April 26, 2023.Want to give your ears a break and read this as an article? You’re looking for this link.https://www.lastweekinaws.com/blog/why-aws-might-be-the-next-backbone-providerNever miss an episodeJoin the Last Week in AWS newsletterSubscribe wherever you get your podcastsHelp the showLeave a reviewShare your feedbackSubscribe wherever you get your podcastsBuy our merch https://store.lastweekinaws.comWhat's Corey up to?Follow Corey on Twitter (@quinnypig)See our recent work at the Duckbill GroupApply to work with Corey and the Duckbill Group to help lower your AWS bill

AWS Morning Brief for the week of April 24, 2023 with Corey Quinn. Links:If you're around tomorrow night (Tuesday) at 6PM, I'll be at The Ramp in SF; let me buy you a drink.Announcing Dev Environment dashboard for Amazon CodeCatalyst (Preview) Amazon DynamoDB now supports up to 50 concurrent table restoresAmazon EC2 supports Ubuntu Pro operating system in a subscription-included modelAmazon EFS now supports up to 10 GiB/s of throughput Increased visibility of your carbon emissions data with AWS Customer Carbon Footprint ToolPython 3.10 runtime now available in AWS Lambda Understanding techniques to reduce AWS Lambda costs in serverless applicationsUse Amazon DynamoDB global tables in DynamoDB Shell Announcing General Availability of Amazon CodeCatalyst 

Last week in security news: Creating an AWS Backup Account, Azure had another cross-tenant access vulnerability, Security Hub Hurts My Self-Esteem, and more!Links:Corey hosted a partner panel at AWS Container Day at KubeCon This post on using OIDC to secure your CI/CD pipelines mirrors what I did with GitHub actions a year or so ago.Teri Radichel has a piece on Creating an AWS Backup AccountSlack is conducting an absolute masterclass in how to screw up messaging to your target audience.Azure had another cross-tenant access vulnerabilitySecurity Hub Hurts My Self-EsteemAWS Security Profile: Matt Luttrell, Principal Solutions Architect for AWS IdentityTool of the Week: iamlive 

AWS Morning Brief for the week of April 17, 2023 with Corey Quinn. This week is RSA in San Francisco; I'll be haunting the expo hall at some point, so if you're in town say hi.Links:The Last Week in AWS Job Board continues to thrive; thanks for your ongoing support.Amazon Chime SDK updates Service Level AgreementAmazon CodeWhisperer is now generally availableAmazon Connect now enables agents to handle voice calls, chats, and tasks concurrentlyAmazon EC2 Serial Console is now available on EC2 bare metal instances Amazon RDS for MySQL now supports up to 15 read replicas for RDS Multi-AZ deployment option with two readable standby database instancesAWS Graviton2-based Amazon EC2 instances are available in additional regions AWS Ground Station now supports Wideband Digital Intermediate FrequencyAWS Lambda adds support for Node.js 18 in the AWS GovCloud (US) Regions Introducing AWS Lambda response streaming Understanding Amazon DynamoDB latency Announcing New Tools for Building with Generative AI on AWSAWS Now Supports Credentials-fetcher for gMSA on Amazon Linux 2023 AWS investment in South Africa results in economic ripple effect New Global AWS Data Processing Addendum 15 cool things we found inside the Spheres, Amazon’s urban rainforest in downtown Seattle 

Last week in security news: Logging strategies for security incident response, A Department of Energy report shows some rather serious gaps in security monitoring, A dedicated repository of winners of the S3 Bucket Negligence Awards, and more!Links:Zoom took an outage and the message was clearly AWS generated. Root cause? Misconfigured SCP.A Department of Energy report shows some rather serious gaps in the security monitoring of their cloud environments.Logging strategies for security incident responseReduce triage time for security investigations with Amazon Detective visualizations and export dataTLS inspection configuration for encrypted traffic and AWS Network FirewallA dedicated repository of winners of the S3 Bucket Negligence Awards.

AWS Morning Brief Extras edition for the week of April 12, 2023.Want to give your ears a break and read this as an article? You’re looking for this link.https://www.lastweekinaws.com/blog/localstack-why-local-development-for-cloud-workloads-makes-senseNever miss an episodeJoin the Last Week in AWS newsletterSubscribe wherever you get your podcastsHelp the showLeave a reviewShare your feedbackSubscribe wherever you get your podcastsBuy our merch https://store.lastweekinaws.comWhat's Corey up to?Follow Corey on Twitter (@quinnypig)See our recent work at the Duckbill GroupApply to work with Corey and the Duckbill Group to help lower your AWS bill

AWS Morning Brief for the week of April 10, 2023 with Corey Quinn. Links:Console Toolbar is now generally available for AWS CloudShellAnnouncing CSV Export for AWS Resource Explorer Search ResultsAnnouncing Utilization Notifications for EC2 On-Demand CapacityEverything you need to know about AWS Billing Conductor’s new pricing modelHow to use Amazon CloudWatch to monitor Amazon DynamoDB table size and item count metricsImplement resource counters with Amazon DynamoDBAWS Organizations, moving an organization member account to another organization: Part 3Build secure multi-account multi-VPC connectivity for your applications with Amazon VPC Lattice Higher education cloud financial planning: A former CFO’s perspectiveHow the Think Big for Small Business program helps small businesses win big contractsAmazon started passing out Small Business labels to giant companies.Perfect imperfections: how AWS is innovating on diamond materials for quantum communication with Element Six

Last week in security news: Gain insights and knowledge at AWS re:Inforce 2023, InvalidClientTokenId, a repository of AWS customer breaches, and more!Links:If you're in New York City proper, I hope to see you tonight at 7PM at Vol de NuitWe're hiring an Account Exec to handle media sales for this very podcast. Should you be the person who refers the successful candidate, we'll give you a $3K USD referral fee.Nick Frichette has found an undocumented Amplify API and used it to leak AWS Account IDs.Friend of the newsletter Chris Farris has started an AWS security consulting practice.Gain insights and knowledge at AWS re:Inforce 2023 How to use Amazon GuardDuty and AWS WAF v2 to automatically block suspicious hostsInvalidClientTokenId: The security token included in the request is invalid errorSomeone is curating this repository of AWS customer breaches.