Release Date: 26/06/2022 | Issue: 143
CloudSecList is a newsletter for busy professionals who want to keep up to date with the cloud security industry. Hand-curated by Marco Lancini.

If you received it, you either subscribed or someone forwarded it to you. If you fit in the latter camp and want to subscribe, then you can click on this button:
Sign Up

JupiterOne: Cyber asset context and visibility for the cloud
As companies expand to the cloud, asset visibility worsens. The JupiterOne Cyber Asset Management Platform helps you get it back.
Answer complex security and infrastructure questions, understand the contextual relationships between assets, and build the foundation for your security program with JupiterOne.
Get started with your free account today.

This week's articles

Get Started with Sigstore (Free Course!)   #explain, #supply-chain
Learn how to digitally sign software artifacts to ensure a safer chain of custody that can be traced back to the source.

Painting a Threat Detection Landscape   #monitor, #strategy
Post discussing challenges/nuances associated with measuring MITRE ATT&CK technique detection coverage.

Cloud Risk Encyclopedia   #attack, #aws, #azure, #defend, #gcp
1200+ cloud security risks, 3 cloud platforms, 47 compliance frameworks, 18 risk categories, 4 risk levels.

Anatomy of an Attack: Exposed keys to Crypto Mining   #attack, #aws
Blog detailing the activity associated with a low sophistication crypto mining incident caused by exposed keys.

General Availability of SLSA 3 Go native builder for GitHub Actions   #build, #ci/cd, #supply-chain
How to use the newly released trusted builders for Go applications, and examples of how you can use the generated information.

Terraform Cloud Adds Drift Detection for Infrastructure Management   #announcement, #terraform
Drift Detection for Terraform Cloud continuously checks infrastructure state to detect and notify operators of any changes, minimizing risk, downtime, and costs.

HashiCorp Vault 1.11 Adds Kubernetes Secrets Engine, PKI Updates, and More   #announcement, #vault
In this release, Vault adds a new Kubernetes secrets engine to dynamically generate credentials, improves the KV (key-value) secrets engine's usability, adds support for the PKI engine for non-disruptive rotation, enables bring your own key (BYOK) for Transit, and brings many other improvements.

Office 365 Functionalities that can Ransom Files   #attack, #azure
Proofpoint has discovered a potentially dangerous piece of functionality in Office 365 that allows ransomware to encrypt files stored on SharePoint and OneDrive.

Establish security boundaries in your on-prem AD and Azure environment   #azure, #defend
A high-level explanation of how to implement security boundaries in an on-prem AD and Azure environment to protect your critical assets based on the principle of tiered administration, including how BloodHound can help you in the process.


All of the ad-hoc things you're doing to manage incidents today, done for you, and much more!

Tool integration platform for Kubernetes.

This webhook is for mutating pods that will require AWS IAM access.

Knox is a secret management service.

From the cloud providers

AWS Icon  Use templated answers to perform Well-Architected reviews at scale
A solution to help you perform reviews easier and faster. It allows workload owners to automatically populate their reviews with templated answers to questions in the AWS Well-Architected Tool (AWS WA Tool).

AWS Icon  Automate vulnerability management and remediation in AWS using Amazon Inspector and AWS Systems Manager
How to remediate Inspector findings by using Security Hub custom actions to trigger a Systems Manager Automation runbook for on-demand vulnerability patching on the selected EC2 instances.

AWS Icon  New for AWS DataSync: Move Data Between AWS and Other Public Locations
Amazon added to DataSync the capability to migrate data between AWS Storage services and either Google Cloud Storage or Microsoft Azure Files. It makes data migration much easier especially for BCP/DR.

GCP Icon  Google Cloud Security Overview
A bird's eye view of the Google Cloud Security Services, illustrated via sketchnotes.

GCP Icon  Introducing a new homepage for Google Cloud
Google introduced a new homepage for Google Cloud, redesigned for simplicity, performance, and navigation.

Sponsor CloudSecList

If you want to get your product or job ad in front of thousands of security professionals, ranging from engineers to CISOs and VCs, at companies ranging from small start-ups to Fortune500 and FAANG, you can reach out at
[email protected]

Thanks for reading!

If you found this newsletter helpful, I'd really appreciate if you could forward it to your friends and colleagues! 👌

If you have questions, comments, or feedback, let me know on Twitter (@lancinimarco / @CloudSecList), or at!

Forward Forward
Twitter Tweet
Share Share

How did you like this issue of CloudSecList?

1       2       3       4       5

Archives View in browser Sponsorship
© 2019-present, CloudSecList by Marco Lancini.