AWS Morning Brief

Links:1Password frankly got it wrong with their assertion that you shouldn't bother with MFA for 1Password itself. Joe Frichette has a handy guide on the ordered steps to take to avoid CloudFront or DNS domain takeovers on AWSOver 1,000 iOS apps found exposing hardcoded AWS credentialsChris Farris has a great post covering how to handle Incident Response in AWS.Announcing new AWS IAM Identity Center APIs to manage users and groups at scale How to subscribe to the new Security Hub Announcements topic for Amazon SNS This week's tool is an open source dingus that lets you use TouchID on supported Macs to authenticate sudo on macOS.

Want to give your ears a break and read this as an article? You’re looking for this link.https://www.lastweekinaws.com/blog/the-harrowing-search-for-the-elusive-technical-answerWant to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/mZDquxNO09s\\Never miss an episodeJoin the Last Week in AWS newsletterSubscribe wherever you get your podcastsHelp the showLeave a reviewShare your feedbackSubscribe wherever you get your podcastsBuy our merch https://store.lastweekinaws.comWhat's Corey up to?Follow Corey on Twitter (@quinnypig)See our recent work at the Duckbill GroupApply to work with Corey and the Duckbill Group to help lower your AWS bill

AWS Morning Brief for the week of September 5, 2022 with Corey Quinn.

Links:Last week LastPass reported (yet another) security issue, wherein their source code was stolen. Finally: an honest recap of fwd:cloudsec and re:Inforce 2022 from someone who had the stomach to sit through the entirety of the latter.The Register reports on a growing trend of using AWS resources to hide phishing attacks.Expanded eligibility for the free MFA security key program How to centralize findings and automate deletion for unused IAM rolesIdentifying publicly accessible resources with Amazon VPC Network Access Analyzer The tool of the week: popeye is a Kubernetes cluster resource sanitizer.

Want to give your ears a break and read this as an article? You’re looking for this link.https://www.lastweekinaws.com/blog/how-google-cloud-and-aws-approach-customer-carbon-emissionsWant to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/eyO1DqP9LhYNever miss an episodeJoin the Last Week in AWS newsletterSubscribe wherever you get your podcastsHelp the showLeave a reviewShare your feedbackSubscribe wherever you get your podcastsBuy our merch https://store.lastweekinaws.comWhat's Corey up to?Follow Corey on Twitter (@quinnypig)See our recent work at the Duckbill GroupApply to work with Corey and the Duckbill Group to help lower your AWS bill

AWS Morning Brief for the week of August 29, 2022 with Corey Quinn.

Links:Fascinating allegations have come from Twitter's former CISO about an alleged trashfire approach to security intrinsic to their culture.Microsoft employees exposed their own Azure credentials via GitHubA fascinating discovery by the folks at WizHow to detect suspicious activity in your AWS account by using private decoy resources Remember to opt out of AWS AI data usage.

Want to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/sagemaker_is_responsible_for_my_surprise_bill/Want to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/LCZjSZhRAjsNever miss an episodeJoin the Last Week in AWS newsletterSubscribe wherever you get your podcastsHelp the showLeave a reviewShare your feedbackSubscribe wherever you get your podcastsBuy our merch https://store.lastweekinaws.comWhat's Corey up to?Follow Corey on Twitter (@quinnypig)See our recent work at the Duckbill GroupApply to work with Corey and the Duckbill Group to help lower your AWS bill

AWS Morning Brief for the week of August 22, 2022 with Corey Quinn.

Links:Apparently there's been some dependency confusion in AWS CodeArtifact.PlatformQ wins this week's S3 Bucket Negligence Award Found an interesting article that suggests that ransomware in AWS isn't a purely theoretical concern.Protocol interview with AWS CISO CJ Moses about his cloud security challenges.AWS co-announces release of the Open Cybersecurity Schema Framework (OCSF) projectTrivy is a security scanner for vulnerabilities in container images, Git repositories, filesystems, and various bits of configuration.