This issue is sponsored by Invary. Check out Invary's ability to detect hidden rootkits, a task that modern threat detection solutions fail in action » HERE.

This week TLDR i.e. 1 minute version (For executives):

1. Amazon Connect launches AWS CloudTrail support for flow management pages.

2. Amazon ECR adds pull through cache support for GitLab.

Trending in Cloud & Cyber Security (Security Blogs, articles, news, advisories etc):

1. AWS Security Blogs & Bulletins:

   • How to enforce a security baseline for an AWS WAF ACL across your organization using AWS Firewall Manager. Link.

   • How Amazon Security Lake is helping customers simplify security data management for proactive threat analysis. Link.

2. General security blogs, articles & reports:

   • AWS Application Load Balancer mTLS with open-source cloud CA by Paul Schwarzenberger. Link.

   • How I Prep for Talks – and You Can Too! by Kat Traxler. Link.

   • AWS Security Threat Analysis: IAM Users & Service Resource Policies by Ziyad Almbasher. Link.

   • Building a Landing zone with AWS Control Tower (part 1) by Oleksii Bebych. Link.

3. Trending on the news & advisories.

   • Apple platform security May 2024- PDF.

   • Zscaler responds to post by a threat actor claiming to have potentially obtained unauthorized information from a cybersecurity company. Link.

   • Threat Actor Claims Sale of Dell Database Containing 49 Million Customer Records. Link.

   • Ohio Lottery- Data breach notification. Link.

   • CISA and Partners Release Advisory on Black Basta Ransomware. Link.

   • Dell: Threat actor claims he scraped 49M Dell customer addresses before the company found out. Link.

   • White house- 2024 report on the cybersecurity posture of the united states. Link.

This week Long i.e. 3-5 minutes version (For architects & engineers):

1. Amazon Connect has introduced AWS CloudTrail integration for flow management pages on the Connect admin website. This means that whenever you add, modify, or remove a flow from a flow management page, the corresponding activity is recorded in AWS CloudTrail. This enables enhanced visibility, reporting, and compliance. Link. For example, I updated one of the flows and it was recorded in the CloudTrail:

   

2. Amazon Elastic Container Registry (ECR) has expanded its compatibility by integrating GitLab Container Registry as an endorsed upstream registry for ECR's pull-through cache functionality. With this latest update, GitLab users can seamlessly synchronize images from the newly incorporated upstream registry to their private ECR repositories. Link. Here’s my sample pull through cache rule for GitLab container registry.