This week's articles
Using Sigstore to meet FedRAMP Compliance at Autodesk
One of the more difficult challenges faced by platform developers: striking the right balance between freedom and security. How do you give product developers the tools to build apps while securing those projects at scale?
Email Graffiti: hacking old email
#attack, #aws, #gcp
Hacking images in old Emails, by registering the buckets or domains they point to, allows to vandalize old emails.
A dive into Microsoft Defender for Identity
#attack, #azure, #explain
Synacktiv recently analyzed the detection capabilities of Microsoft Defender for Identity, a cloud-based security solution which is the successor of Microsoft Advanced Threat Analytics and part of Microsoft Defender 365.
Kubernetes 1.25: KMS V2 Improvements
#announcement, #explain, #kubernetes
With Kubernetes v1.25, SIG Auth is introducing a new v2alpha1 version of the Key Management Service (KMS) API. KMS provides an interface for a provider to utilize a key stored in an external key service to perform encryption operations.