This week TLDR i.e. 1 minute version (For executives):

1. AWS Secrets Manager announces support for cost allocation tags for secrets.

2. AWS Organizations now supports Internet Protocol Version 6 (IPv6).

3. Amazon EC2 Mac instances now support configurable System Integrity Protection (SIP) settings.

Trending in Cloud & Cyber Security:

1. AWS Security Blogs & Bulletins:

   • Bulletin: CVE-2025-5279 - Issue with Amazon Redshift Python Connector and the BrowserAzureOAuth2CredentialsProvider plugin. Link.

   • Navigating the threat detection and incident response track at re:Inforce 2025. Link.

   • Elevate your AI security: Must-see re:Inforce 2025 sessions. Link.

   • How to use the new AWS Secrets Manager Cost Allocation Tags feature. Link.

2. General security blogs, articles, reports & trending news/advisories:

   • AWS Built a Security Tool. It Introduced a Security Risk by Eliav Livneh. Link.

   • Cloudy with a Chance of Hijacking Forgotten DNS Records Enable Scam Actor by Jacques Portal, Renée Burton. Link.

   • CISA Advisory: Russian GRU Targeting Western Logistics Entities and Technology Companies. Link.

   • Justice Department Seizes Domains Behind Major Information-Stealing Malware Operation. Link.

   • Cloudflare participates in global operation to disrupt Lumma Stealer. Link.

   • Cloud CISO Perspectives: How Google Cloud’s security team helps build securely. Link.

   • A python in disguise: unpacking PyInstaller malware on macOS. Link.

   • Remote Prompt Injection in GitLab Duo Leads to Source Code Theft by Omer Mayraz. Link.

   • Adidas data breach. Link.

   • Matlab disclosed ransomware attack. Link.

   • Zscaler announced Acquisition of Red Canary. Link.

   • Mandiant: BitM Up! Session Stealing in Seconds Using the Browser-in-the-Middle Technique. Link.

   • Worcester College Student to Plead Guilty to Cyber Extortions. Link.

This week Long i.e. 3-5 minutes version (For architects & engineers):

1. AWS Secrets Manager now allows you to allocate and monitor costs associated with their secret usage. Link. Well explained in THIS blog. For example, here’s my tag:

   

   

2. AWS Organizations now supports Internet Protocol version 6 (IPv6) through new dual-stack endpoints, allowing you to connect over the public internet using IPv6, IPv4, or dual-stack clients. Existing IPv4-only endpoints will continue to be available to ensure backward compatibility. Link. Here’s my endpoint:

   

3. You can now configure System Integrity Protection (SIP) on EC2 Mac instances which allows temporary SIP disablement for testing, installing system extensions, managing drivers, and optimizing development while maintaining security. Link. Well explained in THIS blog.

   Subscribe

   Share