Microsoft whitepaper on best practices to follow to reduce risks against substitution attacks.

How to modify the embedded "history" of a Docker image, and why it can't be used to secure your image supply chain.

How to setup the infrastructure required to create EC2 AMIs from scratch, how to use the example hardening scripts for CentOS, and how to validate them with Amazon Inspector.

Under special circumstances, two AWS accounts could share the same root email address, but it is not a security problem and will probably never happen to you.

Uncovering the power of SQL to analyze IAM policies via normalization of the AWS IAM policy syntax.

AWS credentials associated to a Glassdoor employee were exposed via a publicly accessible repository. These keys gave access to a particular account on AWS related to big data workloads.

The Azure AD and Microsoft 365 kill chain is a collection of recon techniques and hacking tools.

How to secure containers on Microsoft Azure Kubernetes Service (AKS) with open source Falco.

Another experiment aiming to verify what happens after you accidentally leak secrets to a public code repository.

Docker and Snyk recently entered into a partnership to provide container vulnerability scanning to official images on Docker Hub. Additionally, Docker has integrated scanning directly into Docker for Desktop clients.

StreamAlert is a serverless, realtime data analysis framework which empowers you to ingest, analyze, and alert on data from any environment, using datasources and alerting logic you define.

A curated collection of publicly available resources on how technology and tech-savvy organizations around the world practice Site Reliability Engineering (SRE).

A curated list of Falco related tools, frameworks and articles.

sKan is a Kubernetes configuration files and resources scanner that enables developers and devops team members to check whether their work is compliant with security & ops best practices.

Secrets Store CSI driver for Kubernetes secrets - Integrates secrets stores with Kubernetes via a Container Storage Interface (CSI) volume.

You can now access AWS CloudHSM service APIs from your VPC using VPC endpoints, which provide connectivity to CloudHSM without requiring an internet gateway or a NAT instance.

AWS introduced user authentication for EKS clusters from an OpenID Connect (OIDC) Identity Provider (IDP). The OIDC IDP can be used as an alternative to, or along with AWS Identity and Access Management (IAM).

How to use an IAM role to delegate access to resources in different AWS accounts that you own.

AWS IAM now enables administrators to use tags to manage and secure access to more types of IAM resources, such as customer managed IAM policies, Security Assertion Markup Language (SAML) providers, and virtual MFA devices.

Google announced the general availability of multi-cluster services (MCS), a Kubernetes-native cross-cluster service discovery and invocation mechanism for GKE. MCS extends the reach of the Kubernetes Service primitive beyond the cluster boundary, so you can easily build Kubernetes applications that span multiple clusters.

New Private cloud networking for Google Cloud VMware Engine whitepaper discussing the various connectivity options available in VMware Engine, with detailed explanations of traffic flows, optimization options and architectural design considerations.

Google's whitepaper sharing their thinking, based on their experiences working with Google Cloud customers, their CISOs, and their teams, on how best to approach a security transformation.

A reference to understand how Microsoft security solutions can be grouped into categories.