Episode 431
The Spiritual Alignment of Cloud Economics
Last week in security news: LastPass reported another security issue, AWS expanded eligibility for the free MFA security key program, How to centralize findings and automate deletion for unused IAM roles, and more!
September 1, 20224m 53s
Audio is streamed directly from the publisher (dts.podtrac.com) as published in their RSS feed. Play Podcasts does not host this file. Rights-holders can request removal through the copyright & takedown page.
Show Notes
Links:
- Last week LastPass reported (yet another) security issue, wherein their source code was stolen.
- Finally: an honest recap of fwd:cloudsec and re:Inforce 2022 from someone who had the stomach to sit through the entirety of the latter.
- The Register reports on a growing trend of using AWS resources to hide phishing attacks.
- Expanded eligibility for the free MFA security key program
- How to centralize findings and automate deletion for unused IAM roles
- Identifying publicly accessible resources with Amazon VPC Network Access Analyzer
- The tool of the week: popeye is a Kubernetes cluster resource sanitizer.
Topics
cloudawsamazondevopslast week in aws984841