AWS Morning Brief Extras edition for the week of November 22, 2023 . Want to give your ears a break and read this as an article? Youre looking for this link. https://www.lastweekinaws.com/blog/generative-ai-builds-a-reinvent-scavenger-hunt Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts Buy our merch https://store.lastweekinaws.com What's Corey up to? Foll...
Nov 22, 2023•8 min•Ep 593•Transcript available on Metacast AWS Morning Brief for the week of November 20, 2023 with Corey Quinn. Links: re:Quinnvent Wednesday night drinkup at Atomic Liquors Nature Walk Amazon CloudWatch Logs announces regular expression filter pattern support for Live Tail Amazon EBS announces Snapshot Lock to protect snapshots from inadvertent or malicious deletions Amazon MSK Serverless now supports all programming languages Amazon Time Sync Service now supports microsecond-accurate time AWS CloudTrail Lake announces new pricing opti...
Nov 20, 2023•7 min•Ep 592•Transcript available on Metacast Last week in security news: Copilot and CodeWhisperer can in fact leak real secrets, an interesting teardown of a cloud cryptocurrency miner, the tool of the week, and more! Links: Copilot and CodeWhisperer can in fact leak real secrets . An interesting teardown of a cloud cryptocurrency miner . How to create an AMI hardening pipeline and automate updates to your ECS instance fleet How to improve your security incident response processes with Jupyter notebooks Tool of the week: If you've gotta u...
Nov 16, 2023•3 min•Ep 591•Transcript available on Metacast AWS Morning Brief for the week of November 13, 2023, with Corey Quinn. Show Notes: Links: Amazon Aurora Global Database for PostgreSQL now supports write forwarding Amazon SQS announces support for JSON protocol AWS Cost Management now provides purchase recommendations for Amazon MemoryDB Reserved Nodes Introducing the Generative AI Center of Excellence for AWS Partners: The Path to AI Expertise New Block Public Sharing of Amazon EBS Snapshots New for Amazon Comprehend Toxicity Detection AWS Cod...
Nov 13, 2023•5 min•Ep 590•Transcript available on Metacast Last week in security news: The SEC has sued Soalrwinds as well as their CISO, Tracking Malicious Operations of Exposed IAM Keys, Security considerations for running containers on Amazon ECS, and more! Links: The SEC has sued Soalrwinds as well as their CISO personally CloudKeys in the Air: Tracking Malicious Operations of Exposed IAM Keys Refine permissions for externally accessible roles using IAM Access Analyzer and IAM action last accessed Security considerations for running containers on Am...
Nov 09, 2023•3 min•Ep 589•Transcript available on Metacast AWS Morning Brief Extras edition for the week of November 8, 2023 . Links AWS has been making a lot of noise about generative AI AWS's Responsible AI page AWS's Service Terms Amazon's updated management policy language Opt-Out of Amazon AI Opt-Out Terraform module Opt-Out Python script Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts Buy our merch https://s...
Nov 08, 2023•6 min•Ep 588•Transcript available on Metacast AWS Morning Brief for the week of November 6, 2023, with Corey Quinn. Links Amazon Athena announces one hour reservations for Provisioned Capacity AWS Neuron adds support for Llama-2 70b model and PyTorch 2.0 Filter and Stream Logs from Amazon S3 Logging Buckets into Splunk Using AWS Lambda Announcing Amazon EC2 Capacity Blocks for ML to reserve GPU capacity for your machine learning workloads GoDaddy benchmarking results in up to 24% better price-performance for their Spark workloads with AWS G...
Nov 06, 2023•5 min•Ep 587•Transcript available on Metacast Last week in security news: Using AWS role session tags for GitHub Actions, A summary of the Okta hack is pretty damning, IAM Roles Anywhere with an external certificate authority, and more! Links: I like this writeup of using AWS role session tags for GitHub Actions but I hate that I have to use Cognito to pull it off. This summary of the Okta hack is pretty damning. AWS Digital Sovereignty Pledge: Announcing a new, independent sovereign cloud in Europe IAM Roles Anywhere with an external certi...
Nov 02, 2023•3 min•Ep 586•Transcript available on Metacast AWS Morning Brief for the week of October 30, 2023 with Corey Quinn. Links: Amazon Aurora MySQL includes optimizations that reduce the database restart time by up to 65% Amazon EKS adds support for customer managed IAM policies AMI Block Public Access now enabled for all new accounts and existing accounts with no public AMIs AWS Config now supports 19 new resource types AWS Marketplace announces enhanced private offer user experience for sellers AWS re:Post introduces Selections EC2 Hibernate no...
Oct 30, 2023•7 min•Ep 585•Transcript available on Metacast Last week in security news: PR pushback from Microsoft, AWS Cloud Companion Guide for the CSA Cyber Trust Mark, and more! Links: My intense 2am conversation with MSRC a week before BlackHat AWS announces Cloud Companion Guide for the CSA Cyber Trust mark Securing generative AI: An introduction to the Generative AI Security Scoping Matrix...
Oct 26, 2023•3 min•Ep 584•Transcript available on Metacast AWS Morning Brief Extras edition for the week of October 25, 2023 . Want to give your ears a break and read this as an article? Youre looking for this link. https://www.lastweekinaws.com/blog/the-new-frontier-of-cloud-economics-why-aws-costs-are-a-weighty-issue Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts Buy our merch https://store.lastweekinaws.com Wh...
Oct 25, 2023•4 min•Ep 583•Transcript available on Metacast AWS Morning Brief for the week of October 23, 2023, with Corey Quinn. Links: Introducing Amazon EC2 R7i instances AWS announces Amazon Redshift integration with Visual Studio Code AWS announces member account level credit sharing preferences CloudWatch launches out-of-the-box alarm recommendations for AWS services Leapfrog from CentOS 7.9 to Red Hat Enterprise Linux 8.9 with Convert2RHEL and Leapp Utilities on AWS Enhance your security posture by storing Amazon Redshift admin credentials without...
Oct 23, 2023•5 min•Ep 582•Transcript available on Metacast Last week in security news: Delegating permission set management and account assignment in AWS IAM Identity Center, How AWS protects customers from DDoS events, The Tip of the Week, and more! Links: Rhino Security has a two part post that talks about how they find Cognito misconfigurations Delegating permission set management and account assignment in AWS IAM Identity Center How AWS protects customers from DDoS events Now available: Building a scalable vulnerability management program on AWS Iss...
Oct 19, 2023•3 min•Ep 581•Transcript available on Metacast AWS Morning Brief for the week of October 16, 2023 with Corey Quinn. Links: New Amazon CloudWatch metric monitors EC2 instance reachability to EBS volumes Announcing AWS Lambdas support for Internet Protocol Version 6 (IPv6) for outbound connections in VPC Announcing new AWS Network Load Balancer (NLB) availability and performance capabilities Two billion downloads of Terraform AWS Provider shows value of IaC for infrastructure management Why purpose-built artificial intelligence chips may be ke...
Oct 16, 2023•6 min•Ep 580•Transcript available on Metacast Last week in security news: AWS Firewall Manager supports referencing of Security Groups, Secure by Design: AWS to enhance MFA requirements in 2024, You Can't Control Your Data in the Cloud, and more! Links: You Can't Control Your Data in the Cloud Chris Farris leaked 7 IAM keys in public (intentionally! Chris Farris also writes Security Hub gives me imposter syndrome Google is stuffing previously widely available security offerings into incredibly expensive paid-for tiers. AWS Firewall Manager ...
Oct 12, 2023•4 min•Ep 579•Transcript available on Metacast Want to give your ears a break and read this as an article? Youre looking for this link. https://www.lastweekinaws.com/blog/the-cloud-devil-you-know/ Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts Buy our merch https://store.lastweekinaws.com What's Corey up to? Follow Corey on Twitter (@quinnypig) See our recent work at the Duckbill Group Apply to work w...
Oct 11, 2023•8 min•Ep 578•Transcript available on Metacast AWS Morning Brief for the week of October 10, 2023 with Corey Quinn. Links: Sponsor re:Quinnvent Amazon DataZone is now generally available Amazon EC2 Hibernate now supports more operating systems Lambda test events are now available in AWS SAM CLI Simplify data transfer: Google BigQuery to Amazon S3 using Amazon AppFlow Coming November 2023: A new analysis experience on Amazon QuickSight Implement auto-increment with Amazon DynamoDB The Future of Personal Digital Records: Unlocking Security and...
Oct 10, 2023•7 min•Ep 577•Transcript available on Metacast Last week in security news: When It Comes to Email Security, The Cloud You Pick Matters, Enable external pipeline deployments to AWS Cloud by using IAM Roles Anywhere, How AWS threat intelligence deters threat actors, and more! Links: When It Comes to Email Security, The Cloud You Pick Matters Enable external pipeline deployments to AWS Cloud by using IAM Roles Anywhere Get the full benefits of IMDSv2 and disable IMDSv1 across your AWS infrastructure How AWS threat intelligence deters threat act...
Oct 05, 2023•3 min•Ep 576•Transcript available on Metacast AWS Morning Brief for the week of October 2, 2023, with Corey Quinn. Links: Amazon Chime adds Waiting Room capability to further secure your meetings Amazon CloudFront announces security recommendations Amazon DocumentDB (with MongoDB compatibility) supports in-place major version upgrade Amazon EC2 Serial Console now available in additional AWS Regions AWS Application Composer now supports all 1000+ AWS CloudFormation resources DynamoDB global tables is now available in all AWS Regions Announci...
Oct 02, 2023•3 min•Ep 575•Transcript available on Metacast Last week in security news: Accelerating development with AWS CDK plugin CfnGuardValidator, This week's S3 Bucket Negligence Award is brought to you by PwC Nigeria, The volkswagen open source tool, and more! Links: Last week I talked about AWS Management Console Access incorrectly. My thanks to Timothy Ingalls on the Last Week in AWS community Slack for flagging this for me. Gold star for you! This week's S3 Bucket Negligence Award is brought to you by PwC Nigeria. FusionAuth has a great dive in...
Sep 28, 2023•4 min•Ep 574•Transcript available on Metacast AWS Morning Brief for the week of September 25, 2023, with Corey Quinn. Links: Today Corey is hosting a drink-up at 6 PM in Seattle at Outer Planet Brewing . If you're in town / free, come on by; let him buy you a beer. Later this week Corey will be hosting an AMA on 9/27 @ noon PDT over on YouTube . Bring questions! Accenture Extends Generative AI Capabilities to Accelerate Adoption and Value on AWS New Amazon EC2 M2 Pro Mac Instances Built on Apple Silicon M2 Pro Mac Mini Computers How Chime F...
Sep 25, 2023•5 min•Ep 573•Transcript available on Metacast Last week in security news: AWS IAM Identity Center session duration limit increases from 7 to 90 days, Access accounts with AWS Management Console PrivatAccess, A dive through using Amazon Athena in Incident Response, and more! Links: This is an esoteric Firefox/Yubikey compatibility bug that I went blindly stumbling into and has been resolved. Chris Farris has a post up about deploying AWS Backup . In preparation for re:Invent, the MGM had a massive cybersecurity issue Amazon EC2 now supports ...
Sep 21, 2023•4 min•Ep 572•Transcript available on Metacast AWS Morning Brief for the week of September 18, 2023 with Corey Quinn. Links: Amazon SNS FIFO topics now support message delivery to Amazon SQS Standard queues Announcing API Gateway console refresh Cost Anomaly Detection increases custom anomaly monitor limit to 500 Custom notifications are now available for AWS Chatbot How to Integrate Amazon CloudWatch Alarms with Atlassian Confluence Knowledge Articles Building a secure webhook forwarder using an AWS Lambda extension and Tailscale Deploy Gen...
Sep 18, 2023•5 min•Ep 571•Transcript available on Metacast Last week in security news: Corey reported an over-scoped role to AWS security, The bad LastPass breach got even worse, How to enforce DNS name constraints in AWS Private CA, and more! Links: I reported an over-scoped role to AWS security; the response from the SageMaker Canvas team was that it's working as intended . The bad LastPass breach that continues to get worse once again somehow got worse . Microsoft has published a rather thorough postmortem about how their signing key was leaked. A se...
Sep 14, 2023•4 min•Ep 569•Transcript available on Metacast AWS Morning Brief Extras edition for the week of September 13, 2023 . Want to give your ears a break and read this as an article? Youre looking for this link. https://www.lastweekinaws.com/blog/why-your-cpu-based-utilisation-metric-is-absolute-nonsense/ Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts Buy our merch https://store.lastweekinaws.com What's Cor...
Sep 13, 2023•5 min•Ep 570•Transcript available on Metacast AWS Morning Brief for the week of September 11, 2023, with Corey Quinn. Links: Amazon Aurora and Amazon RDS announces Extended Support for MySQL and PostgreSQL databases Amazon CloudWatch adds Amazon EKS control plane logs as Vended Logs Amazon CloudWatch Logs announces regular expression filter pattern syntax support As SwiftOnSecurity pointed out a week or two ago, a lot of folks can now discover firsthand just how many of their rules allow all 10* traffic Introducing Amazon EC2 R7iz instances...
Sep 11, 2023•6 min•Ep 568•Transcript available on Metacast Last week in security news: Barracuda thought it drove 0-day hackers out of customers networks, A terrific guide for getting started with AWS security research, Zukey or Amazon Basics Yubikey, and more! Links: Barracuda thought it drove 0-day hackers out of customers networks . A terrific guide for getting started with AWS security research . Amazon Basics Yubikey Two real-life examples of why limiting permissions works: Lessons from AWS CIRT Validate IAM policies by using IAM Policy Validator f...
Sep 07, 2023•3 min•Ep 567•Transcript available on Metacast Last Week In AWS for the week of September 4, 2023, with Corey Quinn. Links: Amazon QuickSight adds scheduled and programmatic export to Excel format Amazon S3 now supports multivalue answer in response to DNS queries AWS Backup now supports local time zone selections AWS Lambda Functions powered by AWS Graviton2 now available in 6 additional regions AWS Neuron adds support for Llama 2, GPT-NeoX, and SDXL generative AI models AWS Private CA launches Connector for Active Directory Streamlining Pr...
Sep 05, 2023•5 min•Ep 566•Transcript available on Metacast Last week in security news: How AWS built the Security Guardians program, Network Load Balancers now support Security groups, the Tool of the week, and more! Links: David Linthicum stakes out the position that in a multi-cloud world, centralized cloud security is now a must-have . Network Load Balancers now support Security groups How AWS built the Security Guardians program, a mechanism to distribute security ownership Kubernetes Security Issues (CVE-2023-3676, CVE-2023-3893, CVE-2023-3893) Too...
Aug 31, 2023•2 min•Ep 565•Transcript available on Metacast AWS Morning Brief Extras edition for the week of August 30, 2023 . Want to give your ears a break and read this as an article? Youre looking for this link. https://www.lastweekinaws.com/blog/us-west-1-the-flagship-region-that-isn-t Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts Buy our merch https://store.lastweekinaws.com What's Corey up to? Follow Corey...
Aug 30, 2023•6 min•Ep 564•Transcript available on Metacast 
