This week's articles
Introducing the MCP Registry
This post announces the launch of MCP Registry, an open catalog and API for discovering MCP servers. It standardizes server distribution, allows creation of sub-registries, and includes community-driven moderation features.
#announcement
#ai
GitHub Actions: A Cloudy Day for Security - Part 1
This article discusses securing GitHub Actions CI/CD pipelines against contributors with repository access, covering script injection prevention, branch protections, secrets management, environment security, and tag protection best practices.
#ci/cd
#github
#attack
Copilot Broke Your Audit Log, but Microsoft Won’t Tell You
This article reveals a vulnerability in Microsoft 365 Copilot where users could access files without generating audit log entries by simply asking Copilot to omit file links. Microsoft fixed but chose not to disclose this issue.
#ai
#azure
#attack
|
|
Sponsor
MCP & AI Agents: Powerful, but Risky
MCP & AI agents boost productivity—but what stops them from deleting prod data or leaking sensitive info? AI agents powered by MCP are transforming work—but without the right safeguards, they can expose sensitive data, overstep permissions, and create audit blind spots. This post by Boris Kurktchiev, Dylan Souvage, and Thierno Diallo explains how an identity-first model with Teleport + AWS brings Zero Trust, just-in-time access, and full visibility to enterprise AI.
Learn how to secure MCP at scale
|
|
|
Tools
DetectPack-Forge
Turn plain-English behaviors or small log samples into production-ready detection packs — Sigma, KQL (Sentinel), and SPL (Splunk) — with tests and a short response playbook, all mapped to MITRE ATT&CK.
Inboxfuscation
An offensive & defensive framework for mailbox rule obfuscation and detection in Exchange environments.
|
|
From the cloud providers
#AWS
Overview of security services available in AWS Dedicated Local Zones
Dedicated Local Zones provide a robust solution for running regulated workloads for all industries, to meet strict data residency and digital sovereignty, integrating services like AWS Nitro System, AWS KMS External Key Store, ACM, AWS Shield, Amazon GuardDuty, Amazon Inspector, and AWS CloudTrail.
|
|
Thanks for reading!
|
If you found this newsletter helpful, I'd really appreciate if you could forward it to your friends and colleagues! 👌 If you have questions, comments, or feedback, let me know on Twitter ( @lancinimarco / @CloudSecList), or at feedback.cloudseclist.com! Thanks, Marco
|
|
|