This issue is sponsored by Plerion. Get a free cloud security assessment » HERE.

ANNOUNCEMENT: This newsletter is moving to AWS Security Digest

We are merging into AWS Security Digest (ASD). It’s awesome and I think you’ll love it.

After today, all AWS Cloud Security Weekly subscribers will be automatically subscribed to ASD. Please allowlist the official email address:

Daniel Grzelak <hello@awssecuritydigest.com>

And look out for for “AWS Security Digest #220” in your inbox (or junk) next Monday at 8am ET.

This week TLDR i.e. 1 minute version (For executives):

1. AWS API MCP Server now available Link

2. Improved security and isolation for AI agent operations Link

3. Centralized logging for EventBridge event bus enhances observability Link

4. AWS Private CA increases certificate limits for improved PKI management Link

5. AWS Firewall Manager supports AWS PrivateLink for secure management Link

Trending in Cloud & Cyber Security:

1. AWS Security Blogs & Bulletins:

   • Secure authentication beyond IAM access keys Link

   • AWS completes audit with European financial institutions for compliance Link

   • Enhance FSx for Windows security with AI anomaly detection Link

   • Secure multi-tenant agent cost management with Amazon Bedrock Link

   • Secure Amazon Bedrock agent deployment and operations at scale Link

2. General security blogs, articles, reports & trending news/advisories:

   • Exploring Delegated Admin Risks in AWS Organizations Link

   • Code Execution Through Email: How I Used Claude to Hack Itself Link

   • Brewing Trouble — Dissecting a macOS Malware Campaign Link

   • Deep Dive and Nuances of AWS's Programmatic IAM Action List and Service Authorization References (SAR) Link

   • API Keys for Bedrock: A Brief Security Overview Link

   • Attackers Targeting Governments in Southeast Asia Implement Novel Covert C2 Communication Link

Share