This issue is co-sponsored by Invary- Check out Invary's ability to detect hidden rootkits, a task that modern threat detection solutions fail in action » HERE. & Co-sponsored by Sonrai Security- The First Cloud Permissions Firewall!

This week TLDR i.e. 2 minutes version (For executives):

1. AWS Systems Manager launches API support for Quick Setup.

2. Amazon Bedrock achieves FedRAMP High authorization.

3. AWS closed new customer access to AWS CodeCommit, effective July 25, 2024.

Trending in Cloud & Cyber Security (News, Blogs, Tweets etc):

1. AWS Security Blogs & Bulletins:

   • How to deploy an Amazon OpenSearch cluster to ingest logs from Amazon Security Lake. Link.

   • Accelerate incident response with Amazon Security Lake – Part 2. Link.

   • Federated access to Amazon Athena using AWS IAM Identity Center. Link.

   • How to migrate your AWS CodeCommit repository to another Git provider. Link.

2. General security blogs, articles & reports:

   • DigiCert Revocation Incident (CNAME-Based Domain Validation). Link.

   • Automate AWS Secret Rotation with Lambda by Felipe Costa. Link.

   • Anonymous S3 Access by Petri Kallberg. Link.

   • AWS Mine- Create AWS access keys that can be placed in various places to tempt bad guys by Steven Smiley. Link.

   • Amazon GuardDuty S3 Malware Protection: Detect Threats by Sena Yakut. Link.

   • Stressed Pungsan: DPRK-aligned threat actor leverages npm for initial access by Sebastian Obregoso and Zack Allen. Link.

   • Poisoning the SSM Command Document Well by Rami. Link.

   • Note: End-of-support for AWS SDK for Go (v1) was effective July 31, 2025. Link.

   • Securing your secrets in AWS by Warren Parad. Link.

   • AWS CodeCommit deprecated. What to do with Control Tower Customizations? by Oleksii Bebych. Link.

   • Surprising behaviour in AWS web console session duration by Aidan Steele. Link.

   • Vestaboard: Exploring Broken Access Controls and Privilege Escalation by rhinosecuritylabs. Link.

   • The Container Orchestration vs Function-as-a-Service (FaaS) Debate by Eyal Estrin. Link.

3. Trending on the news & advisories:

   • Crowdstrike Root Cause Analysis (RCA). Link.

   • CISA Names First Chief Artificial Intelligence Officer. Link.

   • CrowdStrike sued by investors over outage. Link.

   • Microsoft Massive DDoS attack. Link.

   

This week Long i.e. 5-10 minutes version (For architects & engineers):

1. AWS Systems Manager Quick Setup launched new Quick Setup API which enables you to programmatically use the feature. Link. (Note: I tried to use the #aws ssm-quicksetup CLI but didn’t observe the service API option, even if I had the latest version of AWS CLI).

2. Amazon Bedrock has achieved FedRAMP High-authorized service available in the AWS GovCloud (US-West) Region, allowing Federal agencies, public sector organizations, and enterprises with FedRAMP High compliance requirements to utilize Amazon Bedrock to access fully managed large language models (LLMs) and other foundational models (FMs). Link.

   

3. AWS closed new customer access to AWS CodeCommit, effective July 25, 2024. You can track history of closed services in GitHub. HERE.

   

   

   Subscribe

   Share