Release Date: 15/10/2023 | Issue: 209
Know someone who'd find this useful? Forward this email
CloudSecList is a newsletter for busy professionals who want to keep up to date with the cloud security industry. Hand-curated by Marco Lancini.
Sponsor
AWS, Azure, or GCP customer? Cloud security challenges grow exponentially when key infrastructure migrates from on-prem environments onto public clouds. In this eBook youβll learn how high-growth orgs can adapt their security strategy to stay secure without compromising on speed:
How to identify top risks in your cloud environment
4 playbooks from high-growth companies navigating risks in their cloud β including emerging risks like Log4Shell
What to look for when evaluating cloud-native security platforms (legacy vendors donβt want you to know this)
Deep dive on investigating service account key origins and usage, including analyzing authentication patterns, monitoring authentication events, and examining service account impersonation and key usage.
#gcp #monitor
Post describing new techniques to phish for Primary Refresh Tokens, and in some scenarios also deploy passwordless credentials that comply with even the strictest MFA policies.
#attack #azure
Recently threat actors who have compromised admin accounts of identity providers have then configured their own malicious IdP to act as a trusted source of identity.
#attack #gcp
Post walking through the process of bootstrapping a Kubernetes cluster in an air-gapped lab environment using Fedora Linux and kubeadm.
#build #kubernetes
Throughout September 2023, an attacker executed a targeted campaign via Pypi to draw developers using Alibaba cloud services, AWS, and Telegram to their malicious packages.
#alibaba #attack #aws
In Kubernetes 1.25 as stable (and since 1.23 as beta), the Pod Security admission (PSA) controller replaces PodSecurityPolicy (PSP), making it easier to enforce predefined Pod Security Standards (PSS) by simply adding a label to a namespace.
#explain #kubernetes
Security Insights provides a mechanism for maintainers to provide information about their projects' security processes in a machine-processable way.
#announcement #supply-chain
Sponsor
Tines's Essential Guide to No-Code Automation for Security Teams serves as the ultimate resource on no-code automation for security practitioners. It provides an overview of what no-code automation is, why it is a critical skill for those at the forefront of security operations, and how to bring the power of no-code automation to your security team. In addition, the playbook includes a variety of resources, from customer case studies and success stories to tips to prepare for the future and best practices for implementation. View the full guide here
How to configure Cognito with a single user pool for multiple tenants to securely access a business-to-business application by using SAML custom attributes.
A guide which covers how to build a successful and scalable vulnerability management program on AWS through preparation, enabling and configuring tools, triaging findings, and reporting.
The new GCVE Protected offers bundled pricing for both Google Cloud VMware Engine and Google Cloud's Backup & DR Service.
Sponsor CloudSecList
If you want to get your product or job ad in front of thousands of security professionals, ranging from engineers to CISOs and VCs, at companies ranging from small start-ups to Fortune500 and FAANG, you can reach out at π¨ [email protected] π¨