Release Date: 13/04/2025 | Issue: 283
Know someone who'd find this useful? Forward this email
CloudSecList is a newsletter for busy professionals who want to keep up to date with the cloud security industry. Hand-curated by Marco Lancini.
Sponsor

Top 7 GenAI Security Practices
The task for security teams to secure AI pipelines is no small feat. To help, the Wiz team recently put together the GenAI Security Best Practices Cheat Sheet to provide you with the essential concepts, techniques, and mitigation strategies for improving your security. Inside you’ll find:
  • The top threats to watch out for
  • 7 best practices for securing AI pipeline
  • Practical examples (with screenshots) using Wiz’s AI-SPM
Get the Cheat Sheet

This week's articles


Announcing the Agent2Agent Protocol (A2A)
Google launched a new, open protocol called Agent2Agent (A2A), which will allow AI agents to communicate with each other, securely exchange information, and coordinate actions on top of various enterprise platforms or applications.   #ai   #announcement


Google announces Sec-Gemini v1, a new experimental cybersecurity model
Sec-Gemini v1 outperforms other models on key cybersecurity benchmarks as a result of its advanced integration of Google Threat Intelligence (GTI), OSV, and other key data sources.   #ai   #announcement


Taming the Wild West of ML: Practical Model Signing with Sigstore
Using digital signatures like those from Sigstore, we allow users to verify that the model used by the application is exactly the model that was created by the developers.   #ai


Designing for security and usability: Figma's modern endpoint strategy
How Figma is securing devices without slowing teams down, using tools like Santa, Opal, and smart MDM workflows.   #defend   #strategy


Handling Network Throttling with AWS EC2 at Pinterest
Post discussing Pinterest's experiences in identifying the challenges associated with EC2 network throttling, as well as how they developed network performance monitoring for their EC2 fleet.   #aws   #build   #monitor


OH-MY-DC: OIDC Misconfigurations in CI/CD
Unit 42 researchers discovered problematic patterns and implementations that could be leveraged by threat actors to gain access to restricted resources. One instance of such an implementation was identified in CircleCI's OIDC.   #attack   #ci/cd


Windows Remote Desktop Protocol: Remote to Rogue
Unlike typical RDP attacks focused on interactive sessions, this campaign creatively leveraged resource redirection (mapping victim file systems to the attacker servers) and RemoteApps (presenting attacker-controlled applications to victims).   #attack

Sponsor

State of Cloud Security Report
To better understand the vulnerabilities and threats facing DevOps organizations today, Datadog analyzed security posture data from a sample of thousands of organizations that use AWS, Azure, or Google Cloud. In this report, you’ll gain valuable cloud security insights including:
  • How long-lived credentials create opportunities for attackers to breach cloud environments
  • Adoption of proactive cloud security mechanisms such as S3 Public Access Block or IMDSv2 in AWS
  • Most common risks when using managed Kubernetes distributions
Read the report

Tools


terraschema
Generate JSON Schema files based on a Terraform configuration.


AWS MCP Servers
Specialized MCP servers that bring AWS best practices directly to your development workflow.


user.js
Firefox configuration hardening.


gcp-ip-list
A CLI tool (and library) to simplify the process of retrieving IP addresses from infrastructure hosted on GCP.


StsOidcDriver
A Python-based tool that enables you to request temporary AWS security credentials for an IAM role, using ID tokens, from your OIDC provider.

From the cloud providers


#AWS   Automating AWS Private CA audit reports and certificate expiration alerts
Guide through a custom automation workflow that harnesses AWS Private CA audit reports to monitor certificate expirations proactively.


#GCP   Cloud WAN: Connect your global enterprise with a network built for the AI era
Cloud WAN is a fully managed, reliable, and secure enterprise backbone to transform enterprise wide area network (WAN) architectures.


#GCP   Introducing Google Unified Security
Google introduced Unified Security, a new security solution that combines Google Cloud's security products with Mandiant's expertise to provide a comprehensive approach to threat intelligence, security operations, cloud security, and secure enterprise browsing.

Thanks for reading!

If you found this newsletter helpful, I'd really appreciate if you could forward it to your friends and colleagues! 👌

If you have questions, comments, or feedback, let me know on Twitter (@lancinimarco / @CloudSecList), or at feedback.cloudseclist.com!

Thanks,
Marco
Forward Forward
Twitter Tweet
Share Share

How did you like this issue of CloudSecList?

1       2       3       4       5

Archives View in browser Sponsorship
© 2019-present CloudSecList · Marco Lancini