Mastouille

0 message0 participant0 message aujourd’hui

theOmegabitSome good reads in the latest AWS security digest<a href="https://infosec.exchange/tags/awssecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#awssecurity</a><a href="https://awssecuritydigest.com/past-issues/aws-security-digest-219" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://awssecuritydigest.com/past-issues/aws-security-digest-219</a>

theOmegabitWhy is Inspector Code Security not integrated in Security Hub on day 1? <a href="https://infosec.exchange/tags/awssecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#awssecurity</a><a href="https://docs.aws.amazon.com/inspector/latest/user/code-security-assessments.html" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://docs.aws.amazon.com/inspector/latest/user/code-security-assessments.html</a>

Anonymous 🐈️🐾☕🍵🏴🇵🇸 :af:Critical Cisco ISE Auth Bypass Flaw Impacts Cloud Deployments on AWS, Azure, and OCI <a href="http://dlvr.it/TLmF6P" rel="nofollow noopener noreferrer" translate="no" target="_blank">http://dlvr.it/TLmF6P</a> <a href="https://kolektiva.social/tags/Cisco" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cisco</a> <a href="https://kolektiva.social/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CyberSecurity</a> <a href="https://kolektiva.social/tags/ISE" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ISE</a> <a href="https://kolektiva.social/tags/CloudSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CloudSecurity</a> <a href="https://kolektiva.social/tags/AWSSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AWSSecurity</a>

theOmegabitThere’s a decent amount of talk and research on specific AWS api calls that aren’t logged to cloudtrail but is there an all encompassing list (GitHub hopefully) that covers everything currently known?<a href="https://infosec.exchange/tags/awssecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#awssecurity</a>

theOmegabitMinor annoyance - it looks like AWS renamed “Security Hub” of years past to “Security Hub CSPM” and then re-used “Security Hub” for this new functionality. <a href="https://infosec.exchange/tags/awssecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#awssecurity</a> <a href="https://aws.amazon.com/blogs/aws/unify-your-security-with-the-new-aws-security-hub-for-risk-prioritization-and-response-at-scale-preview/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://aws.amazon.com/blogs/aws/unify-your-security-with-the-new-aws-security-hub-for-risk-prioritization-and-response-at-scale-preview/</a>

theOmegabitThe new site-to-site secrets manager inclusion is pretty sweet. <a href="https://infosec.exchange/tags/awssecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#awssecurity</a><a href="https://aws-cloudsec.com/p/issue-101" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://aws-cloudsec.com/p/issue-101</a>

theOmegabitHandy <a href="https://infosec.exchange/tags/awssecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#awssecurity</a> <a href="https://infosec.exchange/tags/awscloud" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#awscloud</a> <a href="https://infosec.exchange/tags/cloudsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cloudsecurity</a><a href="https://aws.amazon.com/about-aws/whats-new/2025/05/amazon-inspector-container-security-images/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://aws.amazon.com/about-aws/whats-new/2025/05/amazon-inspector-container-security-images/</a>

theOmegabitWhy would you not deploy this in the management account (or a security tooling account) considering what the tool is?<a href="https://infosec.exchange/tags/awssecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#awssecurity</a><a href="https://www.token.security/blog/aws-built-a-security-tool-it-introduced-a-security-risk" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.token.security/blog/aws-built-a-security-tool-it-introduced-a-security-risk</a>

theOmegabitSneaky<a href="https://infosec.exchange/tags/awssecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#awssecurity</a><a href="https://medium.com/@oraspir/how-attackers-rizzlers-can-exploit-aws-trust-policies-to-hide-behind-third-party-roles-052687dad7e9" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://medium.com/@oraspir/how-attackers-rizzlers-can-exploit-aws-trust-policies-to-hide-behind-third-party-roles-052687dad7e9</a>

theOmegabitIs this SSM Agent BuildSafePath fix tied to any CVE?<a href="https://github.com/aws/amazon-ssm-agent/blob/mainline/RELEASENOTES.md" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://github.com/aws/amazon-ssm-agent/blob/mainline/RELEASENOTES.md</a><a href="https://infosec.exchange/tags/awssecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#awssecurity</a>

theOmegabitThis looks pretty slick. A little short week mini project. <a href="https://infosec.exchange/tags/awssecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#awssecurity</a> <a href="https://awseye.com" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://awseye.com</a>

theOmegabitAmazon Inspector best practices. <a href="https://infosec.exchange/tags/cloudsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cloudsecurity</a> <a href="https://infosec.exchange/tags/awssecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#awssecurity</a> <a href="https://aws.amazon.com/blogs/security/amazon-inspector-suppression-rules-best-practices-for-aws-organizations/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://aws.amazon.com/blogs/security/amazon-inspector-suppression-rules-best-practices-for-aws-organizations/</a>

Astra Kernel :verified:AWS Elastic Container Registry Public (ECR Public) vulnerability:=>Hackers can delete, update, and create ECR Public images, layers, and tags in registries and repositories that belong to victims' AWS Accounts<a href="https://blog.lightspin.io/aws-ecr-public-vulnerability" rel="nofollow noopener noreferrer" target="_blank">https://blog.lightspin.io/aws-ecr-public-vulnerability</a>Credit: @gafnitav @LightspinTech<a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/AwsSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AwsSecurity</a> <a href="https://infosec.exchange/tags/ContainerSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ContainerSecurity</a> <a href="https://infosec.exchange/tags/Devops" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Devops</a> <a href="https://infosec.exchange/tags/DevSecops" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DevSecops</a> <a href="https://infosec.exchange/tags/kubernetes" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#kubernetes</a> <a href="https://infosec.exchange/tags/websecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#websecurity</a>

Recherches récentes

Options de recherche

Administré par :

Statistiques du serveur :

#awssecurity