AWS Morning Brief for the week of April 3, 2023 with Corey Quinn. Links: Amazon Kendra launches Featured Results AWS Chatbot now supports search of AWS resources and AWS content AWS Copilot adds support for full customization with AWS CDK or YAML overrides AWS re:Post now includes AWS Knowledge Center articles New Cost Explorer users now get Cost Anomaly Detection by default Introducing Data on EKS – Modernize Data Workloads on Amazon EKS Friend microservices using Amazon DynamoDB and event filt...
Apr 03, 2023•4 min•Ep. 511
Last week in security news: Github accidentally published its RSA host keys for SSH, Automate IAM credential reports for large AWS Organizations, The Tool of the Week, and more! Links: Sad news; infosec luminary Kelly ‘Aloria’ Lum has regrettably passed away. Automate IAM credential reports for large AWS Organizations Github accidentally published its RSA host keys for SSH. How to use Amazon Macie to reduce the cost of discovering sensitive data Use backups to recover from security incidents Too...
Mar 30, 2023•4 min•Ep. 510
AWS Morning Brief Extras edition for the week of March 29, 2023 . Want to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/s3-as-an-eternal-service Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts Buy our merch https://store.lastweekinaws.com What's Corey up to? Follow Corey on Twitter (@qu...
Mar 29, 2023•7 min•Ep. 509
AWS Morning Brief for the week of March 27, 2023 with Corey Quinn. Links: Allow Listing tool for testing new Billing, Cost Management and Account console permissions Amazon CloudWatch Logs adds support for new Amazon VPC Flow Logs metadata Amazon EC2 C6in, M6in, M6idn, R6in, and R6idn metal instances are now available Amazon SNS (pronounced "Snizz") announces support for setting content-type request headers for HTTP/S notifications AWS CodeBuild now supports a small GPU machine type Configuring ...
Mar 27, 2023•5 min•Ep. 508
Last week in security news: The Many Ways to Access DynamoDB, a Yubikey configuration cheatsheet, and more! Links: The Many Ways to Access DynamoDB Scott Piper’s post on redacting AWS account IDs from public posts How to use Google Workspace as an external identity provider for AWS IAM Identity Center Yubikey configuration cheatsheet...
Mar 23, 2023•5 min•Ep. 507
AWS Morning Brief for the week of March 20, 2023 with Corey Quinn. Links: jobs.lastweekinaws.com Amazon EC2 M1 Mac instances now support in-place operating system updates Announcing Amazon Linux 2023 AWS Chatbot now available in Microsoft Teams Announcing cross-account support for Amazon S3 Multi-Region Access Points Talk about cloud with a non-cloud audience New – Use Amazon S3 Object Lambda with Amazon CloudFront to Tailor Content for End Users Implementing an event-driven serverless story gen...
Mar 20, 2023•5 min•Ep. 506
Last week in security news: U.S. Officials are frustrated with cloud providers, Best Practices For Securing Your Home Network, The Tool of the Week, and more! Links: U.S. officials express significant frustration that cloud providers often up-charge customers to add security protections Lightspin has a guide to SecDataOps and Vulnerability Management on AWS Best Practices For Securing Your Home Network . IAM Identity Center for AWS environments spanning AWS GovCloud (US) and standard Regions Est...
Mar 16, 2023•5 min•Ep. 505
AWS Morning Brief Extras edition for the week of March 15, 2023. Want to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/awss-anti-competitive-move-hidden-in-plain-sight/ Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts Buy our merch https://store.lastweekinaws.com What's Corey up to? Foll...
Mar 15, 2023•7 min•Ep. 504
AWS Morning Brief for the week of March 13, 2023 with Corey Quinn. Links: jobs.lastweekinaws.com Amazon EC2 announces the ability to create Amazon Machine Images (AMIs) that can boot on UEFI and Legacy BIOS AWS Application Composer is now generally available AWS CloudShell now supports the modular variant of AWS Tools for PowerShell AWS Config now supports 18 new resource types AWS Lambda now supports up to 10 GB of ephemeral storage for Lambda functions in 6 additional regions AWS announces new...
Mar 13, 2023•6 min•Ep. 503
Last week in security news: Audit Log Wall of Shame, More info on the LastPass breach, the Tool of the Week, and more! Links: Audit Log Wall of Shame Saudi social media app Fayvo apparently had an unsecured database More information has come to light about the LastPass breach Three ways to boost your email security and brand reputation with AWS Tool of the week: Trailscraper is an open source project to get useful information out of CloudTrail logs....
Mar 09, 2023•4 min•Ep. 502
AWS Morning Brief for the week of March 6, 2023 with Corey Quinn. Links: Amazon Aurora Serverless v1 now supports customer configurable maintenance windows Amazon CloudWatch Internet Monitor is now generally available AWS Lambda Powertools for .NET is now generally available Amazon Neptune Serverless now scales down to 1 NCU to save costs AWS Control Tower announces a progress tracker for landing zone setup and upgrades In the Works – AWS Region in Malaysia New – Amazon Lightsail for Research wi...
Mar 06, 2023•6 min•Ep. 501
Last week in security news: US Military emails leaked on an exposed server, How to monitor and query IAM resources at scale, the Tool of the Week, and more! Links: If you're in Seattle, come to Outer Planet Brewing this Sunday at 7PM and let Corey buy you a drink. Aiden Steele writes at length about using a recent enhancement to Systems Manager to pass out a role to all of your EC2 instances. US Military emails leaked on an exposed server Amazon Detective launches an interactive workshop for inv...
Mar 02, 2023•3 min•Ep. 500
AWS Morning Brief Extras edition for the week of March 1, 2023. Want to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/aws-is-asleep-at-the-lambda-wheel Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts Buy our merch https://store.lastweekinaws.com What's Corey up to? Follow Corey on Twitt...
Mar 01, 2023•8 min•Ep. 499
AWS Morning Brief for the week of February 27, 2023 with Corey Quinn. Links: Amazon OpenSearch Service now lets you schedule service software updates during off-peak hours AWS App Runner now supports HTTP to HTTPS redirect Announcing the ability to enable AWS Systems Manager by default across all EC2 instances in an account New: AWS Telco Network Builder – Deploy and Manage Telco Networks Developing portable AWS Lambda functions Using Porting Advisor for Graviton Query data with DynamoDB Shell –...
Feb 27, 2023•6 min•Ep. 498
Last week in security news: More security woes for Azure, the AWS Survival Kit, CloudGPT, and more! Links: A security researcher reported a potential account compromise vector to Azure back in 2021 . I once again want to draw your attention to the open source AWS Survival Kit . How to visualize IAM Access Analyzer policy validation findings with QuickSight Updated ebook: Protecting your AWS environment from ransomware ChatGPT is all the rage, and of course here's CloudGPT to analyze AWS policies...
Feb 23, 2023•5 min•Ep. 497
AWS Morning Brief Extras edition for the week of February 22, 2023 . Want to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/amazons-snowball-edge-frustrates-this-user Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts Buy our merch https://store.lastweekinaws.com What's Corey up to? Follow ...
Feb 22, 2023•8 min•Ep. 496
Feb 21, 2023•7 min•Ep. 495
Last week in security news: Ubiquiti inside attacker pleads guilty, Wiz 2023 State of the Cloud report, the tool of the week, and more! Links: That inside attacker who worked at jackass company Ubiquiti pleads guilty Datadog's security folk discovered an AWS Console rate limit bypass Wiz 2023 State of the Cloud report The anatomy of ransomware event targeting data residing in Amazon S3 Tool of the week: aws-firewall-factory...
Feb 16, 2023•5 min•Ep. 494
AWS Morning Brief Extras edition for the week of February 15, 2023. Want to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/the-dumbest-dollars-a-cloud-provider-can-make/ Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts Buy our merch https://store.lastweekinaws.com What's Corey up to? Foll...
Feb 15, 2023•7 min•Ep. 493
AWS Morning Brief for the week of February 13, 2023 with Corey Quinn. Links: Amazon Chime SDK now offers a Windows client library Amazon CloudWatch now supports high resolution metric extraction from structured logs AWS SAM CLI introduces ‘sam list’ command to inspect AWS SAM resources Get cost estimates faster with AWS Pricing Calculator bulk import New – Visualize Your VPC Resources from Amazon VPC Creation Experience Introducing the AWS ProServe Hadoop Migration Delivery Kit TCO tool Introduc...
Feb 13, 2023•5 min•Ep. 492
Links: In this down market, it's good to know that jobs paying six (and rarely, seven!) figure salaries, giving bonuses, and of course including paid time off are still out there. Unfortunately they're working for cybercrime groups . Ian McKay is great--but given his history of creating awesome-yet-horrifying things in AWS I read this piece on Cedar (AWS's new policy language) Popular drone manufacturer CrowdStrike reports on how Adversaries Can Persist with AWS User Federation , How to set up o...
Feb 09, 2023•5 min•Ep. 491
Want to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/the-aws-community-isnt-for-amazonians Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts Buy our merch https://store.lastweekinaws.com What's Corey up to? Follow Corey on Twitter (@quinnypig) See our recent work at the Duckbill Group Ap...
Feb 08, 2023•8 min•Ep. 490
Links: Amazon announced its fourth quarter and FY 2022 results last week; Tim Bray has an analysis that's absolutely worth reading. Amazon CloudWatch now simplifies metric extraction from structured logs Amazon MemoryDB for Redis Announces 99.99% Availability Service Level Agreement AWS CloudTrail Lake now supports ingestion of activity events from non-AWS sources AWS announces access of Simple Monthly Calculator estimates in the AWS Pricing Calculator Amazon increases NAT Gateway’s capacity to ...
Feb 06, 2023•5 min•Ep. 489
Links: Azure messed up a regular expression GitHub's blog has a piece on passwordless deployments to the cloud LastPass has now admitted that the attackers stole customers' backups and encryption key Deploy a dashboard for AWS WAF with minimal effort Thinkst's free service now supports credit card tokens . precloud is a suite of dynamic tests for infrastructure as code....
Feb 02, 2023•5 min•Ep. 488
Want to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/s3-encryption-at-rest-does-not-solve-for-bucket-negligence/ Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts Buy our merch https://store.lastweekinaws.com What's Corey up to? Follow Corey on Twitter (@quinnypig) See our recent work at...
Feb 01, 2023•9 min•Ep. 487
This episode is sponsored in part by the Google for Startups Cloud Program Links: AWS Purity Test Amazon Detective adds Amazon VPC Flow Logs visualizations for Amazon EKS workloads AWS Elemental MediaLive adds timecode burn-in AWS Pricing Calculator now supports optimized pricing estimation for EC2 Dedicated Hosts Announcing Porting Advisor for Graviton Now Open — AWS Asia Pacific (Melbourne) Region in Australia Amazon OpenSearch Serverless is now generally available! AWS Lambda: Resilience unde...
Jan 30, 2023•6 min•Ep. 486
Links: Datadog reports that an undocumented API allowed CloudTrail bypass MailChimp was breached and had customer data exposed Folks can use GitHub Codespaces to host and deliver malware . How to revoke federated users’ active AWS sessions The worst backup software known to humankind...
Jan 26, 2023•5 min•Ep. 485
Links: Amazon CloudFront now supports the request header order and header count headers Amazon ECS announces the new default console experience Amazon EFS Supports 1,000 Access Points per File System AWS Nitro Enclaves announces support for multiple enclaves AWS Network Optimization Tips Introducing multi-function packager, allowing more than one function per event trigger on Amazon CloudFront Winning the Cat-and-Mouse Race: Staying One Step Ahead of Streaming Free-Riders with GeoGuard and AWS...
Jan 23, 2023•6 min•Ep. 484
Links: Join Corey in Phoenix next Sunday at 1PM at Zuzu for a community meet-up. Rackspace continues to trickle the truth out; it's now admitting that attackers accessed customer data Tom Forbes scanned--wait, holy hell, he scanned every package on PyPi and found 57 live AWS keys . In one year we're going to come back and see how accurate the heads of AWS security are with their predictions for cybersecurity in 2023 Today's tip of the week is to go fire up your important AWS account(s) and valid...
Jan 19, 2023•5 min•Ep. 483
Links: Join Corey in Phoenix next Sunday at 1PM at Zuzu for a community meet-up. AWS Config supports 22 new resource types Changes to AWS Billing, Cost Management, and Account Consoles Permissions Run a popular benchmark on Amazon Redshift Serverless easily with AWS Data Exchange How to optimize costs for grant-based research projects with AWS...
Jan 17, 2023•6 min•Ep. 482
