Episode 383
Suddenly Nobody Wants to Build Heroku
Last week in security news: Heroku is all over the security news headlines, a charity has leaked some sensitive images, Mandoogle takes a long look at AWS, Azure puts the “Squeal” in “PostgreSQL,” and more!
May 12, 20225m 47s
Audio is streamed directly from the publisher (dts.podtrac.com) as published in their RSS feed. Play Podcasts does not host this file. Rights-holders can request removal through the copyright & takedown page.
Show Notes
Links:
- S3 Bucket Negligence Award
- Mandoogle on how AWS's instance metadata service can be abused by attackers
- Heroku apparently had its entire database breached last week
- Wiz Research discovered a new vulnerability in Azure’s PostgreSQL Flexible Server service.
- AWS deleted packages they'd pushed to public repositories
- A guide to Cloud Security Orienteering
Topics
cloudawsamazondevopslast week in aws984841