S3 Ep120: When dud crypto simply won’t let go [Audio + Text]
DOUG. Busts, shutdowns, Samba, and GitHub. All that, and more, on the Naked Security …
Cloud Provider
The best AWS security practices for 2023
EXECUTIVE SUMMARY: As organizations have transitioned from basic cloud environments to distributed, and considerably more complex …
Slack’s Lessons Learned from Supporting Highly Regulated Workloads on AWS GovCloud
Archie Gunasekara, Staff Software Engineer at Slack, and Andrew Martin, Staff Software Engineer at Slack, recently shared their learnings …
KORE Delivers IoT SAFE Solution for Massive IoT Use Cases with AWS
ATLANTA, January 2023 — KORE (NYSE:KORE), a global leader in Internet of Things (IoT) solutions and worldwide IoT …
How to improve security incident investigations using Amazon Detective finding groups
Uncovering the root cause of an Amazon GuardDuty finding can be a complex task, requiring security operations center (SOC) analysts to …
Working with AWS to secure your data against attack
The content of this post is solely the responsibility of the author. AT&T does not adopt or endorse any of the views, positions, or …
Hacker finds copy of TSA no-fly list on exposed cloud storage
A copy of the U.S. Transportation Security Administration’s “no-fly list” has been found by a Swiss hacker exposed on the open …
Critical Microsoft Azure RCE flaw impacted multiple services
Researchers found a new critical remote code execution (RCE) flaw impacting multiple services related to Microsoft Azure. Researchers from …
S3 Ep118: Guess your password? No need if it’s stolen already! [Audio + Text]
DOUG. LifeLock woes, remote code execution, and a big scam meets big …
Improve your AWS security posture, Step 3: Encrypt AWS data in transit and at rest
In the first two blogs in this series, we discussed properly setting up IAM and avoiding direct internet access to AWS resources. In this …
Experts found SSRF flaws in four different Microsoft Azure services
SSRF vulnerabilities in four Microsoft Azure services could be exploited to gain unauthorized access to cloud resources. Researchers at the …
S3 Ep117: The crypto crisis that wasn’t (and farewell forever to Win 7) [Audio + Text]
DOUG. Call centre busts, cracking cryptography and patches galore. All that more on the Naked Security …
Improve your AWS security posture, Step 2: Avoid direct internet access to AWS resources
In the first blog in this series, we discussed setting up IAM properly. Now we’re moving on to the second step, avoiding direct internet …
Rackspace Ransomware Incident Highlights Risks of Relying on Mitigation Alone
The recent ransomware incident at Rackspace that took down the company’s hosted Microsoft Exchange server environment has focused attention …