Release Date: 02/10/2022 | Issue: 157
Know someone who'd find this useful? Forward this email
CloudSecList is a newsletter for busy professionals who want to keep up to date with the cloud security industry. Hand-curated by Marco Lancini.
Sponsor

State of Cloud Security Report 2022
Cloud computing has transformed the IT landscape and enabled organizations to innovate faster than in the data center. But the complexity of cloud environments is creating new challenges - is your team prepared?
41% of the 400 cloud security and engineering professionals surveyed by Snyk say cloud native services increase complexity. Yet, nearly half of the organizations find that deployment is faster with improved cloud security. Surprising?
Read the full 2022 State of Cloud Security report to learn more, and see how millions of developers are building securely with Snyk.

This week's articles


Best practices on rolling out code scanning at enterprise scale
Some best practices on how to roll out centrally managed, developer-centric application security with a third party CI/CD system like Jenkins or ADO.   #build   #ci/cd


26 AWS Security Best Practices to Adopt in Production
There are many things you must set up if you want your solution to be operative, secure, reliable, performant, and cost effective. And, first things first, the best time to do that is now - right from the beginning, before you start to design and engineer.   #aws   #defend   #explain


Vulnerability Scanning at Palantir
Effective vulnerability management is a cornerstone of any security program. This post explains how Palantir streamlines and automates vulnerability remediation efforts.   #strategy


Our Application Security Journey
A 2 part series on the state of Application Security at Wise, describing their integration of security in the Software Development Lifecycle (part 1, part 2).   #containers   #strategy


Executive Order on Secure Supply Chain - in Plain English
You may have heard about EO 14028, the "Executive Order on Improving the Nation's Cybersecurity", which mandates the establishment of minimum supply chain security standards for all software consumed by the US government. This post tries to lay it out in plain English and share steps to help you get ready to meet the timelines.   #explain   #supply-chain


Introducing workerd: the Open Source Workers runtime
workerd is the JavaScript/Wasm runtime code that powers Cloudflare Workers, now open source under the Apache 2.0 license.   #announcement   #cloudflare   #containers


Kubernetes Multi-tenancy
An overview of available configuration options and best practices for cluster multi-tenancy.   #explain   #kubernetes


Vulnerable GitHub Actions Workflows: Privilege Escalation Inside Your CI/CD Pipeline
Post walking through the risks of using the workflow_run GitHub trigger, with concrete examples.   #attack   #ci/cd


Using Kyverno To Enforce AWS Load Balancer Annotations For Centralized Logging To S3
Post covering the steps to take in order to use Kyverno to automatically configure the annotations that enable access logs for an AWS Network Load Balancer (NLB) to be forwarded to an S3 bucket.   #aws   #build


Run a Tailscale VPN relay on ECS/Fargate
A step by step tutorial on how to run Tailscale in ECS.   #aws   #build

Tools


Chainguard Images
Chainguard Images is a collection of container images designed for minimalism and security.


badrobot
Badrobot is a Kubernetes Operator audit tool. It statically analyses manifests for high risk configurations such as lack of security restrictions on the deployed controller and the permissions of an associated clusterole.


gcp_service_observer
View a GCP project's API/service endpoint configurations.


permission-manager
Permission Manager is a project that brings sanity to Kubernetes RBAC and Users management, Web UI FTW.

CloudSecDocs


Pod Security Standards
A short primer on Kubernetes Pod Security Standards.

From the cloud providers


#AWS   Best practices for setting up Amazon Macie with AWS Organizations
Some best practices to implement before you enable Amazon Macie across all of your AWS accounts within AWS Organizations.


#AWS   How to automatically build forensic kernel modules for Amazon Linux EC2 instances
Post walking through the EC2 forensic module factory solution to deploy automation to build forensic kernel modules that are required for EC2 incident response automation.


#GCP   View policy enforcement metrics for ACM Policy Controller
Policy Controller enables the enforcement of programmable policies for Anthos clusters. It is now easier to export and visualize these metrics.


#GCP   Introducing Cloud Logging's Log Analytics powered by Big Query
Announcing Log Analytics, a new set of features in Cloud Logging, powered by BigQuery that allows you to gain even more insights from your logs.


#GCP   Google Cloud Deploy adds Cloud Run and deployment verification support
In the latest release, Google Cloud Deploy add supports for Cloud Run deployment and deployment verification in Preview.


#GCP   Best Kept Security Secrets: Harness the power of Organization Policy Service
Organization Policy Service is a powerful tool for creating broad security guardrails in the cloud. Learn more about how this Best Kept Security Secret works.


#AZURE   Forensic artifacts in Office 365 and where to find them
Post providing some explanations and tips for investigators so to be able to easily understand, in any situation, what data is available, and in which portal.


#AZURE   Introducing the Microsoft Defender for Office 365 Security Operations Guide
Microsoft announced the release of the Microsoft Defender for Office 365 Security Operations Guide, which gives an overview of the requirements and tasks for successfully operating Microsoft Defender for Office 365.

Thanks for reading!

If you found this newsletter helpful, I'd really appreciate if you could forward it to your friends and colleagues! ๐Ÿ‘Œ

If you have questions, comments, or feedback, let me know on Twitter (@lancinimarco / @CloudSecList), or at feedback.cloudseclist.com!

Thanks,
Marco
Forward Forward
Twitter Tweet
Share Share

How did you like this issue of CloudSecList?

1       2       3       4       5

Archives View in browser Sponsorship
ยฉ 2019-present CloudSecList ยท Marco Lancini