Issue 82
7 days of Cloud Security, recapped in 7 minutes or less!
This week TLDR i.e. 1 minute version (For executives):
Amazon EC2 now supports automated recovery of Microsoft SQL Server with VSS.
Trending in Cloud & Cyber Security:
AWS Security Blogs & Bulletins:
Bulletin: Path traversal issue in Deep Java Library - (CVE-2025-0851). Link.
Amazon Redshift enhances security by changing default behavior in 2025. Link.
Implement effective data authorization mechanisms to secure your data used in generative AI applications – part 2. Link.
How to deploy an Amazon OpenSearch cluster to ingest logs from Amazon Security Lake. Link.
General security blogs, articles, reports & trending news/advisories:
RogueOIDC: AWS Persistence and Evasion through attacker-controlled OIDC Identity Provider by Eduard Agavriloae. Link.
Research Uncovers Exposed DeepSeek Database Leaking Sensitive Information, Including Chat History by Gal Nagli. Link.
Incident Response Essentials: Building a Resilient AWS Environment with Wazuh by Ezekiel Obeisun Jr. Link.
CopyObjection: Fending off ransomware in AWS by Jesse Griggs. Link.
8 Million Requests Later, We Made The SolarWinds Supply Chain Attack Look Amateur by Benjamin Harris, Aliz Hammond, Pinaki Mondal. Link.
CYE acquires Solvo’s cloud security technology to enhance cyber risk management. Link.
Tenable acquiring Israel’s Vulcan Cyber in $150 million deal. Link.
Google will now automatically revoke permissions from harmful Android apps. Link.
FDA Advisory: Cybersecurity Vulnerabilities with Certain Patient Monitors from Contec and Epsimed. Link.
India TataTech ransom incident. Link.
GrubHub third party incident. Link.
This week Long i.e. 3-5 minutes version (For architects & engineers):
Amazon EC2 now enables automated recovery of Microsoft SQL Server databases using Volume Shadow Copy Services (VSS)-based EBS snapshots. You can leverage an AWS Systems Manager Automation Runbook to specify a restore point in time, streamlining the recovery process, without requiring the Microsoft SQL Server database to be stopped. Link. Here’s my automation run book sample:
