17 min listen
A Hole in the S3 Buckets
ratings:
Length:
5 minutes
Released:
Jun 8, 2023
Format:
Podcast episode
Description
Last week in security news: Thinkst Canary's Thinkstscapes, Multiple S3 Bucket Negligence Awards, Credit Card Payment Processing on AWS, and more!Links:
Thinkst Canary's Thinkstscapes
It's been a while since we've seen a strong, confirmed S3 Bucket Negligence Award, but Toyota has a massive one dating back a decade.
Oof, looks like Google's CloudSQL product had a vulnerability that would allow an attacker to escalate to GCP control plane permissions.
Holy... Legion malware expands scope to target AWS CloudWatch as well.
When it rains, it pours; Capita had an S3 Bucket Negligence Award as well!
Credit Card Payment Processing on AWS - Don't do it. Pay Stripe.
Amazon Security Lake is now generally available
Announcing the AWS Blueprint for Ransomware Defense
Get custom data into Amazon Security Lake through ingesting Azure activity logs
Tip of the week: When you're starting something new that might turn into a company, use SSO.
Thinkst Canary's Thinkstscapes
It's been a while since we've seen a strong, confirmed S3 Bucket Negligence Award, but Toyota has a massive one dating back a decade.
Oof, looks like Google's CloudSQL product had a vulnerability that would allow an attacker to escalate to GCP control plane permissions.
Holy... Legion malware expands scope to target AWS CloudWatch as well.
When it rains, it pours; Capita had an S3 Bucket Negligence Award as well!
Credit Card Payment Processing on AWS - Don't do it. Pay Stripe.
Amazon Security Lake is now generally available
Announcing the AWS Blueprint for Ransomware Defense
Get custom data into Amazon Security Lake through ingesting Azure activity logs
Tip of the week: When you're starting something new that might turn into a company, use SSO.
Released:
Jun 8, 2023
Format:
Podcast episode
Titles in the series (100)
reInforce Meant Learning: AWS Morning Brief for the week of July 1st, 2019. by AWS Morning Brief