This week's articles
AWS KMS Threat Model
#aws, #defend, #explain
What are the threats in letting an AWS service manage the encryption of your data instead of creating a Customer Managed Key?
Harvesting Logs for Fun and Profit
#attack, #monitor
Post looking at the kinds of things you might find in your logs. The juicy bits are Personal Identifying Information (PII) or security credentials.
Introducing self-service SBOMs
#ci/cd, #defend
GitHub announced a new Export SBOM function that allows anyone with read access to a GitHub cloud repository to generate an NTIA-compliant SBOM with a single click.
Introducing Microsoft Security Copilot: Empowering defenders at the speed of AI
#announcement, #azure
Security Copilot combines an advanced large language model (LLM) with a security-specific model from Microsoft. This security-specific model in turn incorporates a set of security-specific skills and is informed by Microsoft's unique global threat intelligence. Security Copilot runs on Azure's infrastructure.
|