Episode 422
Twilio's Insecure Text Message Issue
Last week in security news: Twilio's disclosure of an Employee and Customer Account Compromise, an update of AWS Security Reference Architecture, and more!
August 11, 20225m 3s
Audio is streamed directly from the publisher (dts.podtrac.com) as published in their RSS feed. Play Podcasts does not host this file. Rights-holders can request removal through the copyright & takedown page.
Show Notes
Links:
- Twilio's disclosure of an Employee and Customer Account Compromise.
- Update of AWS Security Reference Architecture is now available
- As the linked tweet says: "If you check out the AWS docs on IAM policy parsing order there is a flowchart that shows you can get an Allow outcome before the boundary policy is evaluated."
- IAM-Deescalate: is an open source tool to help users reduce the risk of privilege escalation.
Topics
cloudawsamazondevopslast week in aws984841