Release Date: 16/02/2025 | Issue: 275
Know someone who'd find this useful? Forward this email
CloudSecList is a newsletter for busy professionals who want to keep up to date with the cloud security industry. Hand-curated by Marco Lancini.
Sponsor

[Webinar] 5 Ways New AI Agents Can Automate Identity Attacks
Struggling to filter AI hype from genuine threat? Join Luke Jennings from Push Security on February 27th for his latest threat research webinar where heโ€™ll be demonstrating 5 ways new AI agents can be used to automate identity attacks.
  • Reconnaissance to discover a companyโ€™s SaaS tenants
  • Initial access through scaling up credential stuffing attacks
  • Persistence following account takeover
  • Lateral movement to compromise additional apps and accounts
  • Exfiltration through mass data collection
You can register for free here. See you there!

This week's articles


Analyzing Secure AI Architectures
NCC Group has compiled several architectural patterns that successfully mitigate AI risks in real deployments.   #ai   #build   #strategy


whoAMI: A cloud image name confusion attack
Post detailing the discovery and impact of the whoAMI cloud image name confusion attack, which could allow attackers to execute code within AWS accounts due to a vulnerable pattern in AMI retrieval.   #attack   #aws   #iam


So you wanna write Kubernetes controllers?
What they don't tell you about developing scalable and reliable controllers.   #build   #containers   #kubernetes


How to run Firecracker without KVM on cloud VMs
A novel way to run virtual machines, namely microVMs on cloud VMs where KVM is not available.   #build   #containers


AWS Tightens the Reins: New AWS SaaS Marketplace Rules Will Impact Your Commitments
AWS has announced new rules for its SaaS Marketplace that will significantly affect how customers meet their spend commitments.   #announcement   #aws


Detection engineering at scale: one step closer
A post looking into implementing detection engineering at scale while adopting best practices from software development.   #build   #monitor   #strategy


What in the MFA? Deconflicting MFA settings in Microsoft Entra ID
Post discussing the challenges of managing multifactor authentication (MFA) settings in Microsoft Entra ID, especially in light of evolving threats.   #attack   #azure

Sponsor CloudSecList in 2025

If you want to get your product in front of thousands of security professionals, ranging from engineers to CISOs and VCs, at companies ranging from small start-ups to Fortune500 and FAANG, take a look at:
๐Ÿ”— cloudseclist.com/sponsor

Tools


jit-groups
JIT Groups is an open source application that lets you implement secure, self-service access management for Google Cloud using groups.


server
A simple server for sending and receiving messages in real-time per WebSocket.


RansomWhen
A tool to enumerate identities that can lock S3 Buckets using KMS.


tfsort
A CLI utility to sort Terraform variables and outputs.


resource-control-policy-examples
Example AWS Resource control policies to get started or mature your usage of AWS RCPs.

From the cloud providers


#AWS   Implementing least privilege access for Amazon Bedrock
Some ways that you can apply the principle of least privilege (PoLP) to large language model (LLM)-based applications that use Amazon Bedrock.


#AWS   Announcing ASCP integration with Pod Identity: Enhanced security for secrets management in Amazon EKS
The integration of ASCP with Pod Identity marks a significant step forward in secrets management for Amazon EKS. It offers enhanced security, simplified configuration, and improved operations.


#AZURE   Build a stronger security strategy with proactive and reactive incident response: Cyberattack Series
With their Cyberattack Series, customers will discover how Microsoft Incident Response investigates unique and notable attacks.

Business News

Thanks for reading!

If you found this newsletter helpful, I'd really appreciate if you could forward it to your friends and colleagues! ๐Ÿ‘Œ

If you have questions, comments, or feedback, let me know on Twitter (@lancinimarco / @CloudSecList), or at feedback.cloudseclist.com!

Thanks,
Marco
Forward Forward
Twitter Tweet
Share Share

How did you like this issue of CloudSecList?

1       2       3       4       5

Archives View in browser Sponsorship
ยฉ 2019-present CloudSecList ยท Marco Lancini