AWS Morning Brief

AWS Morning Brief for the week of July 25, 2022 with Corey Quinn.

Links:Things I wish I knew about AWS WAF - Bot Control How to Protect Your Data from Ransomware with S3 Object LockIt seems that Experian has learned nothing from its string of data breachesThe Makati city government is the winner of this week's S3 Bucket Negligence award.A quick overview of AWS principals, identity-based policies, and resource-based policies.Eligible customers can now order a free MFA security keyReported EKS IAM Authenticator Issue I found a handy script that someone beat together that makes it easy as pie to use AWS Roles Anywhere. 

Want to give your ears a break and read this as an article? You’re looking for this link.https://www.lastweekinaws.com/blog/azures_vulnerabilities_are_quackWant to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/5iTxtBnCPysNever miss an episodeJoin the Last Week in AWS newsletterSubscribe wherever you get your podcastsHelp the showLeave a reviewShare your feedbackSubscribe wherever you get your podcastsWhat's Corey up to?Follow Corey on Twitter (@quinnypig)See our recent work at the Duckbill GroupApply to work with Corey and the Duckbill Group to help lower your AWS bill

AWS Morning Brief for the week of July 18th, 2022 with Corey Quinn.

Links:My article on the dangers of chatbots led someone to share this concern-affirming tale. Extend AWS IAM roles to workloads outside of AWS with IAM Roles Anywhere How to tune TLS for hybrid post-quantum cryptography with Kyber hasIAMfailedopenyet.com is a site that triggers a Lambda function on every invocation that attempts to access something it cannot. 

Want to give your ears a break and read this as an article? You’re looking for this link.https://www.lastweekinaws.com/blog/coreys-security-posture-2022Want to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/dHDY69hIvvkNever miss an episodeJoin the Last Week in AWS newsletterSubscribe wherever you get your podcastsHelp the showLeave a reviewShare your feedbackSubscribe wherever you get your podcastsWhat's Corey up to?Follow Corey on Twitter (@quinnypig)See our recent work at the Duckbill GroupApply to work with Corey and the Duckbill Group to help lower your AWS bill

AWS Morning Brief for the week of July 11, 2022 with Corey Quinn.

Links:The most recently reported Azure vulnerabilityAmazon Photos exposes customers to riskI (re)discovered Scott Piper's work on Lesser Known Techniques for Attacking AWS Environments.PyPi python packages get caught sending stolen AWS keys to unsecured sites.TLS 1.2 to become the minimum TLS protocol level for all AWS API endpoints GuardDuty has new findings CloudFormation Guard had a new release.

Want to give your ears a break and read this as an article? You’re looking for this link:https://www.lastweekinaws.com/blog/the-chatops-issue-no-ones-chatting-aboutWant to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/eBKZ71OLjG8Never miss an episodeJoin the Last Week in AWS newsletterSubscribe wherever you get your podcastsHelp the showLeave a reviewShare your feedbackSubscribe wherever you get your podcastsWhat's Corey up to?Follow Corey on Twitter (@quinnypig)See our recent work at the Duckbill GroupApply to work with Corey and the Duckbill Group to help lower your AWS bill

AWS Morning Brief for the week of July 4th, 2022 with Corey Quinn.