Episode 483
Wait Did You Say Root API Keys?
Last week in security news: Community Meet-up in Phoenix on Sunday, Rackspace admits that attackers accessed customer data, Tom Forbes scanned every package on PyPi, and more!
January 19, 20234m 53s
Audio is streamed directly from the publisher (dts.podtrac.com) as published in their RSS feed. Play Podcasts does not host this file. Rights-holders can request removal through the copyright & takedown page.
Show Notes
Links:
- Join Corey in Phoenix next Sunday at 1PM at Zuzu for a community meet-up.
- Rackspace continues to trickle the truth out; it's now admitting that attackers accessed customer data
- Tom Forbes scanned--wait, holy hell, he scanned every package on PyPi and found 57 live AWS keys.
- In one year we're going to come back and see how accurate the heads of AWS security are with their predictions for cybersecurity in 2023
- Today's tip of the week is to go fire up your important AWS account(s) and validate that the root user doesn't have API credentials assigned.
Topics
cloudawsamazondevopslast week in aws984841