This week's articles
AWS KMS Threat Model
#aws, #defend, #explain
What are the threats in letting an AWS service manage the encryption of your data instead of creating a Customer Managed Key?
Harvesting Logs for Fun and Profit
Post looking at the kinds of things you might find in your logs. The juicy bits are Personal Identifying Information (PII) or security credentials.
Introducing self-service SBOMs
GitHub announced a new Export SBOM function that allows anyone with read access to a GitHub cloud repository to generate an NTIA-compliant SBOM with a single click.
Introducing Microsoft Security Copilot: Empowering defenders at the speed of AI
Security Copilot combines an advanced large language model (LLM) with a security-specific model from Microsoft. This security-specific model in turn incorporates a set of security-specific skills and is informed by Microsoft's unique global threat intelligence. Security Copilot runs on Azure's infrastructure.