Release Date: 12/01/2025 | Issue: 270
Know someone who'd find this useful? Forward this email
CloudSecList is a newsletter for busy professionals who want to keep up to date with the cloud security industry. Hand-curated by Marco Lancini.
Sponsor
Is your cloud data secure? A simple phishing attack can put everything at risk and prevention alone isnβt enough to protect against attacks. Cyberattacks are guaranteed. Is your recovery? With Rubrik, you can gain complete data visibility, reducing data exfiltration risk and allowing you to confidently recover from cyber incidents and operational disruptions quickly. Master Cyber Resilience in the Cloud with Rubrik
Chris Farris discusses the implementation of security invariants within an AWS management account, specifically the payer account where organizational policies do not apply.
#aws #defend #iam
A post that looks into the specific challenges companies face regarding non-human identities in PCI DSS v4.0, and explores strategies to overcome them.
#defend
A (now remediated) vulnerability allowed the Reader role on the AML service to gain write access to these Storage Accounts to ultimately get code execution through Jupyter notebooks.
#attack #azure
Using a reusable monitoring workflow, rekor-monitor can periodically and automatically verify both the consistency of a log and search for any found identities.
#ci/cd #defend #supply-chain
This chatbot functions as an illustration of the capabilities of Amazon Bedrock to convert natural language into Amazon Athena queries and to process and utilize complex data sets.
Etcd-k8s-extract takes in an etcd data directory or db file used in kubernetes, extracts the kubernetes resources and then writes the resources to disk in yaml format.
This new course is designed to help security professionals, architects, and artificial intelligence and machine learning (AI/ML) engineers understand and implement security best practices for generative AI applications and models in the AWS Cloud.
How to extract OU structure and account metadata from your organization and use it to securely share Security Lake data on a per-OU basis across your organization.