1d:I[2890,["266","static/chunks/870fdd6f-4fcc92c129a57d11.js","970","static/chunks/970-91a3a37cc668faba.js","857","static/chunks/857-3b2a1421afa266d2.js","965","static/chunks/app/podcasts/episode/%5BpodcastEpisodeGuid%5D/page-e939c6b91b4a25d4.js"],"default"] 1e:I[1318,["266","static/chunks/870fdd6f-4fcc92c129a57d11.js","970","static/chunks/970-91a3a37cc668faba.js","857","static/chunks/857-3b2a1421afa266d2.js","965","static/chunks/app/podcasts/episode/%5BpodcastEpisodeGuid%5D/page-e939c6b91b4a25d4.js"],"default"] 1f:T43d,

Last week in security news: CloudFlare had a Confused Deputy Vulnerability, Moving Away from IAM Identity Center, AWS KMS now supports importing asymmetric and HMAC keys, and more!

Links:

CloudFlare had a Confused Deputy Vulnerability
As I move away from IAM Identity Center, I find it interesting that a lot of folks I respect are doing similar things.
I was going to drag this otherwise awesome article disclosing the vulnerability they located within AWS CDK's eks.Cluster component.
AWS KMS now supports importing asymmetric and HMAC keys
Tool/ Tip of the week: List of documented and undocumented AWS API models

20:T4eb,[{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Podcasts","item":"https://metacast.app/podcasts"},{"@type":"ListItem","position":2,"name":"News","item":"https://metacast.app/podcasts/categories/news"},{"@type":"ListItem","position":3,"name":"AWS Morning Brief","item":"https://metacast.app/podcasts/a13fcb4c-0fee-5b6f-a1f8-b5de82b6c57c"}]},{"@context":"https

‌

Episode description

Confused DevOps Professional

Episode description