Links: Amazon Chime announces new mobile apps with features to improve your meeting experience Amazon Detective improves search by supporting case insensitivity AWS Activate is now open to all startups AWS CloudFormation StackSets increases limits on three service quotas AWS IQ now supports partners and independent consultants in Australia, Europe, Japan, and other regions Announcing a new Cost Explorer console experience Omdia study: how the media and entertainment industry uses cloud marketpla...
Oct 17, 2022•7 min•Ep 450•Transcript available on Metacast Links: AWS Permission Boundaries for Dummies . Improve the Availability of Existing Okta IAM Federation Setup Using Multi-Region SAML Endpoints Use existing Logging and Security Account with AWS Control Tower IAM Access Analyzer makes it simpler to author and validate role trust policies Tool of the week: cleanup-aws-access-keys...
Oct 13, 2022•3 min•Ep 449•Transcript available on Metacast Want to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/aws-data-transfer-charges-ingress-actually-is-free/ Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts Buy our merch https://store.lastweekinaws.com What's Corey up to? Follow Corey on Twitter (@quinnypig) See our recent work at the Duc...
Oct 12, 2022•9 min•Ep 448•Transcript available on Metacast Links: AWS Cloud Map Updates Service Level Agreement Amazon DevOps Guru now allows customers control over the notifications they receive Amazon S3 Object Lambda now supports using your own code to modify the results of S3 HEAD and LIST API requests Amazon SageMaker Clarify now can provide near real-time explanations for ML predictions AWS Lambda Functions powered by AWS Graviton2 now available in 12 additional regions The five most visited Amazon DynamoDB blog posts of 2022 Prevent account takeo...
Oct 11, 2022•6 min•Ep 447•Transcript available on Metacast Links: AWS RDS Aurora wish list The Confusing Lifetimes of AWS IAM Identity Center Access Tokens AWS announces updated Support Plans Console with new IAM controls How to automatically build forensic kernel modules for Amazon Linux EC2 instances Tool of the week: aws-security-survival-kit...
Oct 06, 2022•5 min•Ep 446•Transcript available on Metacast Want to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/confidential-computing-is-for-the-tinfoil-hat-brigade Want to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/z_jD64jGhhI Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts Buy our mer...
Oct 05, 2022•7 min•Ep 445•Transcript available on Metacast Links: Amazon S3 Replication Time Control for predictable replication time now available in the AWS China (Beijing) and AWS China (Ningxia) Regions Amazon SageMaker Canvas supports mathematical functions and operators for richer data exploration Snow Amazon Linux 2 (AL2) Amazon Machine Image (AMI) available on all Snow Family jobs Announcing 1-Click templates and tutorials in AWS Budgets AWS Certificate Manager Private Certificate Authority is now AWS Private Certificate Authority AWS Cloud Cont...
Oct 03, 2022•6 min•Ep 444•Transcript available on Metacast Links: The Challenges of Assessing Kubernetes clusters for PCI Compliance . Tailscale released a post titled What we learned (and can share) from passing our SOC 2 Type II audit that is absolutely worth your time and attention. Our friends at Wiz discovered a vulnerability in Oracle Cloud’s security where you could mount other customers' EBS volumes simply by asking the API to do so . From the Mouth of AWS Horse: Announcing an update to IAM role trust policy behavior In the world of tools, AWS h...
Sep 29, 2022•6 min•Ep 443•Transcript available on Metacast Want to give your ears a break and read this as an article? You’re looking for this link. Want to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/iOqSjqhD2lc Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts Buy our merch https://store.lastweekinaws.com What's Corey up to? Follow Corey on Twitter (@quinnypi...
Sep 28, 2022•6 min•Ep 442•Transcript available on Metacast AWS Morning Brief for the week of Monday, September 26th with Corey Quinn.
Sep 26, 2022•9 min•Ep 441•Transcript available on Metacast Links: If you're near Arlington Virgina, come on by Highline this evening at 7PM and let me buy you a drink. Are you confused by AWS's KMS service? Me too. This guide to KMS helped a lot--and you really don't want to be confused by security things. BHIM leaks the details of 7.26 million users and scores themselves an S3 Bucket Negligence Award in the process. Stop doing this! Securely Using External ID for Accessing AWS Accounts Owned by Others - AWS blesses us with a great rundown of how to thi...
Sep 22, 2022•5 min•Ep 440•Transcript available on Metacast Want to give your ears a break and read this as an article? You’re looking for this link . Want to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/2ve_Xmtx7_o Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts Buy our merch https://store.lastweekinaws.com What's Corey up to? Follow Corey on Twitter (@quinnyp...
Sep 21, 2022•8 min•Ep 439•Transcript available on Metacast AWS Morning Brief for the week of September 19th, 2022 with Corey Quinn.
Sep 19, 2022•7 min•Ep 438•Transcript available on Metacast Links: Nick Frichette wrote an incredibly handy guide on the ordered steps to take to avoid CloudFront or DNS domain takeovers on AWS. This handy walkthrough talks about how to configure something that shrieks its head off whenever someone logs into AWS via the root account . The Center for Internet Security just released an update to the AWS version of their security benchmarks, and this approachable post goes through what's new. Introducing message data protection for Amazon SNS - This is a bi...
Sep 15, 2022•5 min•Ep 437•Transcript available on Metacast Want to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/google-cloud-functions-is-surprisingly-delightful Want to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/lV-Q0EO63fo Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts Buy our merch h...
Sep 14, 2022•8 min•Ep 436•Transcript available on Metacast AWS Morning Brief for the week of September 12, 2022 with Corey Quinn.
Sep 12, 2022•7 min•Ep 435•Transcript available on Metacast Links: 1Password frankly got it wrong with their assertion that you shouldn't bother with MFA for 1Password itself . Joe Frichette has a handy guide on the ordered steps to take to avoid CloudFront or DNS domain takeovers on AWS Over 1,000 iOS apps found exposing hardcoded AWS credentials Chris Farris has a great post covering how to handle Incident Response in AWS . Announcing new AWS IAM Identity Center APIs to manage users and groups at scale How to subscribe to the new Security Hub Announcem...
Sep 08, 2022•6 min•Ep 434•Transcript available on Metacast Want to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/the-harrowing-search-for-the-elusive-technical-answer Want to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/mZDquxNO09s \\ Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts Buy our ...
Sep 07, 2022•9 min•Ep 433•Transcript available on Metacast AWS Morning Brief for the week of September 5, 2022 with Corey Quinn.
Sep 06, 2022•7 min•Ep 432•Transcript available on Metacast Links: Last week LastPass reported (yet another) security issue, wherein their source code was stolen . Finally: an honest recap of fwd:cloudsec and re:Inforce 2022 from someone who had the stomach to sit through the entirety of the latter. The Register reports on a growing trend of using AWS resources to hide phishing attacks . Expanded eligibility for the free MFA security key program How to centralize findings and automate deletion for unused IAM roles Identifying publicly accessible resource...
Sep 01, 2022•5 min•Ep 431•Transcript available on Metacast Want to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/how-google-cloud-and-aws-approach-customer-carbon-emissions Want to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/eyO1DqP9LhY Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts Buy o...
Aug 31, 2022•9 min•Ep 430•Transcript available on Metacast AWS Morning Brief for the week of August 29, 2022 with Corey Quinn.
Aug 29, 2022•7 min•Ep 429•Transcript available on Metacast Links: Fascinating allegations have come from Twitter's former CISO about an alleged trashfire approach to security intrinsic to their culture. Microsoft employees exposed their own Azure credentials via GitHub A fascinating discovery by the folks at Wiz How to detect suspicious activity in your AWS account by using private decoy resources Remember to opt out of AWS AI data usage ....
Aug 25, 2022•5 min•Ep 428•Transcript available on Metacast Want to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/sagemaker_is_responsible_for_my_surprise_bill/ Want to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/LCZjSZhRAjs Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts Buy our merch http...
Aug 24, 2022•11 min•Ep 427•Transcript available on Metacast AWS Morning Brief for the week of August 22, 2022 with Corey Quinn.
Aug 22, 2022•7 min•Ep 426•Transcript available on Metacast Links: Apparently there's been some dependency confusion in AWS CodeArtifact . PlatformQ wins this week's S3 Bucket Negligence Award Found an interesting article that suggests that ransomware in AWS isn't a purely theoretical concern. Protocol interview with AWS CISO CJ Moses about his cloud security challenges. AWS co-announces release of the Open Cybersecurity Schema Framework (OCSF) project Trivy is a security scanner for vulnerabilities in container images, Git repositories, filesystems, and...
Aug 18, 2022•5 min•Ep 425•Transcript available on Metacast Want to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/an_unexpected_love_letter_to_azure/ Want to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/NIsF_NS1B0k Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts Buy our merch https://store.l...
Aug 17, 2022•9 min•Ep 424•Transcript available on Metacast AWS Morning Brief for the week of August 15, 2022 with Corey Quinn.
Aug 15, 2022•7 min•Ep 423•Transcript available on Metacast Links: Twilio's disclosure of an Employee and Customer Account Compromise . Update of AWS Security Reference Architecture is now available As the linked tweet says : "If you check out the AWS docs on IAM policy parsing order there is a flowchart that shows you can get an Allow outcome before the boundary policy is evaluated." IAM-Deescalate: is an open source tool to help users reduce the risk of privilege escalation....
Aug 11, 2022•5 min•Ep 422•Transcript available on Metacast Want to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/why_amazon_cant_end_the_release_tidal_wave/ Want to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/eKMxBNF5N-k Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts What's Corey up to? F...
Aug 10, 2022•9 min•Ep 421•Transcript available on Metacast 
