#explain, #supply-chain

Learn how to digitally sign software artifacts to ensure a safer chain of custody that can be traced back to the source.

#monitor, #strategy

Post discussing challenges/nuances associated with measuring MITRE ATT&CK technique detection coverage.

#attack, #aws, #azure, #defend, #gcp

1200+ cloud security risks, 3 cloud platforms, 47 compliance frameworks, 18 risk categories, 4 risk levels.

#attack, #aws

Blog detailing the activity associated with a low sophistication crypto mining incident caused by exposed keys.

#build, #ci/cd, #supply-chain

How to use the newly released trusted builders for Go applications, and examples of how you can use the generated information.

#announcement, #terraform

Drift Detection for Terraform Cloud continuously checks infrastructure state to detect and notify operators of any changes, minimizing risk, downtime, and costs.

#announcement, #vault

In this release, Vault adds a new Kubernetes secrets engine to dynamically generate credentials, improves the KV (key-value) secrets engine's usability, adds support for the PKI engine for non-disruptive rotation, enables bring your own key (BYOK) for Transit, and brings many other improvements.

#attack, #azure

Proofpoint has discovered a potentially dangerous piece of functionality in Office 365 that allows ransomware to encrypt files stored on SharePoint and OneDrive.

#azure, #defend

A high-level explanation of how to implement security boundaries in an on-prem AD and Azure environment to protect your critical assets based on the principle of tiered administration, including how BloodHound can help you in the process.

All of the ad-hoc things you're doing to manage incidents today, done for you, and much more!

Tool integration platform for Kubernetes.

This webhook is for mutating pods that will require AWS IAM access.

Knox is a secret management service.

A solution to help you perform reviews easier and faster. It allows workload owners to automatically populate their reviews with templated answers to questions in the AWS Well-Architected Tool (AWS WA Tool).

How to remediate Inspector findings by using Security Hub custom actions to trigger a Systems Manager Automation runbook for on-demand vulnerability patching on the selected EC2 instances.

Amazon added to DataSync the capability to migrate data between AWS Storage services and either Google Cloud Storage or Microsoft Azure Files. It makes data migration much easier especially for BCP/DR.

A bird's eye view of the Google Cloud Security Services, illustrated via sketchnotes.

Google introduced a new homepage for Google Cloud, redesigned for simplicity, performance, and navigation.