Security

📜 History In late 2020, I was floored by the number of announcements, changes, re:Invent releases, and blog posts that AWS announces every week. Then, I decided to automate part of my weekly routine to stay up to date. The idea was to get a digest email summary of what was going on. It was very helpful for my job as an Indie AWS Security Consultant. A few weeks later, I decided to open my weekly digest to external subscribers as I believe it could interest folks in the same field....

As we welcome 2024, I’m excited to share a special post for the AWS Security Digest Newsletter. It’s been a remarkable year, and your engagement has made it even more so. 🔗 I’ve compiled the top 5 most-clicked links from our 2023 editions. These links represent the most intriguing, informative, and impactful topics in AWS Security landscape. 1️⃣ Enabling Just-In-Time (JIT) Access for AWS S3 Buckets 2️⃣ Actionable AWS Security Best Practices [Cheat Sheet] 3️⃣ AWS Security Foundations For Dummies 4️⃣ Bare minimum AWS Security Alerting and Configuration 5️⃣ AWS ImdsPacketAnalyzer 👨‍🍳 Why a Chef?...

As businesses continue to adopt cloud computing and move their operations to the cloud, it’s crucial to ensure the security of their cloud environment. Amazon Web Services (AWS) is the leading cloud platform, but with the ease of use comes the responsibility of securing the data, applications, and services deployed on the cloud. AWS provides a vast array of security services, but it can be challenging to keep track of all the activities and changes happening in your AWS account....

Update from: 2021-12-23 Official Security bulletin from AWS AWSSupportServiceRolePolicy Informational Update https://aws.amazon.com/security/security-bulletins/AWS-2021-007/ You will find below details about the security incident that leads to this unattended access for millions of AWS customers. On 22nd December 2021, AWS deployed a new version (v20) of AWSSupportServiceRolePolicy used by a mandatory role: AWSServiceRoleForSupport for AWS Support access to all AWS Accounts. In this policy, they added the action: s3:getObject which gives access to all customer Amazon S3 data by AWS Support teams....

TL;DR: AWS Managed Policies are safe. Currently. :arrows_counterclockwise: Previously in Policy Validation Before AWS Access Analyzer (AA) - Policy Validation release, few open source initiatives were available to lint AWS IAM Policies, like Parliament from Duolabs, CloudSplaining (Salesforce). The tricky part of these tools is that they are community-driven, from volunteer contributors, and most of the master data comes from AWS IAM docs web scrapping. It is difficult to maintain over time, especially if the documentation format is changing, or if the documentation is not in sync with the IAM reality....