Last Week In AWS Podcast

Last week in security news: Accelerating development with AWS CDK plugin – CfnGuardValidator, This week's S3 Bucket Negligence Award is brought to you by PwC Nigeria, The volkswagen open source tool, and more!Links:Last week I talked about AWS Management Console Access incorrectly. My thanks to Timothy Ingalls on the Last Week in AWS community Slack for flagging this for me. Gold star for you!This week's S3 Bucket Negligence Award is brought to you by PwC Nigeria.FusionAuth has a great dive into their annual SOC 2 vendor selection process.My beloved Retool has a post talking about how an MFA failure mode led to a small number of customers being exposed. Accelerating development with AWS CDK plugin – CfnGuardValidator How to implement cryptographic modules to secure private keys used with IAM Roles Anywhere Tool of the week: The volkswagen open source tool detects when your tests are being run in a CI server, and makes them pass.

AWS Morning Brief for the week of September 25, 2023, with Corey Quinn. Links:Today Corey is hosting a drink-up at 6 PM in Seattle at Outer Planet Brewing. If you're in town / free, come on by; let him buy you a beer.Later this week Corey will be hosting an AMA on 9/27 @ noon PDT over on YouTube. Bring questions!Accenture Extends Generative AI Capabilities to Accelerate Adoption and Value on AWS New – Amazon EC2 M2 Pro Mac Instances Built on Apple Silicon M2 Pro Mac Mini Computers How Chime Financial uses AWS to build a serverless stream analytics platform and defeat fraudsters Centralizing management of AWS Lambda layers across multiple AWS AccountsHandle traffic spikes with Amazon DynamoDB provisioned capacityStreamline interstate Department of Motor Vehicles collaboration with Private Blockchain How to host your Unreal Engine game for under $1 per player with Amazon GameLift How United Airlines built a cost-efficient Optical Character Recognition active learning pipelineHow VirtuSwap accelerates their pandas ... -based trading simulations with an Amazon SageMaker Studio custom container and AWS GPU instancesProvision sandbox accounts with budget limits to reduce costs using AWS Control TowerReducing the Scope of Impact with Cell-Based Architecture - Reducing the Scope of Impact with Cell-Based ArchitectureFrom Massage Therapist to Cloud Associate with AWS Academy 

Last week in security news: AWS IAM Identity Center session duration limit increases from 7 to 90 days, Access accounts with AWS Management Console PrivatAccess, A dive through using Amazon Athena in Incident Response, and more!Links:This is an esoteric Firefox/Yubikey compatibility bug that I went blindly stumbling into and has been resolved.Chris Farris has a post up about deploying AWS Backup. In preparation for re:Invent, the MGM had a massive cybersecurity issueAmazon EC2 now supports Block Public Access for Amazon Machine ImagesAWS IAM Identity Center session duration limit increases from 7 to 90 daysAWS Identity and Access Management provides action last accessed information for more than 140 services Access accounts with AWS Management Console Private Access A dive through using Amazon Athena in Incident Response. This is important! Corey will be hosting an AMA on 9/27 @ noon PDT over on Twitch. Bring questions!

AWS Morning Brief for the week of September 18, 2023 with Corey Quinn. Links:Amazon SNS FIFO topics now support message delivery to Amazon SQS Standard queuesAnnouncing API Gateway console refresh Cost Anomaly Detection increases custom anomaly monitor limit to 500Custom notifications are now available for AWS Chatbot How to Integrate Amazon CloudWatch Alarms with Atlassian Confluence Knowledge Articles Building a secure webhook forwarder using an AWS Lambda extension and TailscaleDeploy Generative AI Models on Amazon EKSTroubleshoot networking issues during database migration with the AWS DMS diagnostic support AMI Using AWS CloudFormation and AWS Cloud Development Kit to provision multicloud resourcesCombining content moderation services with graph databases & analytics to reduce community toxicityAWS Private Certificate AuthorityRetail Partner Conversations: How Rokt is impacting the future of retail Simplify access to internal information using Retrieval Augmented Generation and LangChain Agents How to view Azure costs using Amazon QuickSight Centralized Dashboard for AWS Config and AWS Security Hub Benefits of Domain Registration with Amazon Route 53 Use Bring your own IP addresses (BYOIP) and RFC 8805 for localization of Internet contentUsing NAT Gateways with multiple-Amazon VPCs at scale Navigating change: From ophthalmologist to AWS Cloud expert

This podcast covers various security incidents and news, including an over-scoped role reported to AWS security, the worsening LastPass breach, Microsoft's signing key leakage, a scam targeting adult entertainment video vendors, Google's privacy concerns, and AWS announcements.

This podcast discusses the limitations of using CPU utilization as the only metric for evaluating resource efficiency in the cloud. It highlights the importance of considering additional metrics like network activity, disk I/O, and memory usage for accurate resource assessment.

AWS Morning Brief for the week of September 11, 2023, with Corey Quinn. Links:Amazon Aurora and Amazon RDS announces Extended Support for MySQL and PostgreSQL databasesAmazon CloudWatch adds Amazon EKS control plane logs as Vended LogsAmazon CloudWatch Logs announces regular expression filter pattern syntax supportAs SwiftOnSecurity pointed out a week or two ago, a lot of folks can now discover firsthand just how many of their rules allow all 10* trafficIntroducing Amazon EC2 R7iz instances AWS Marketplace now supports AWS CloudTrail to improve procurement activity monitoring AWS Step Functions launches enhanced error handlingAWS Trusted Advisor adds 1 new fault tolerance checkAnnouncing daily disbursements for AWS Marketplace sellers Embracing FinOps to Maximize Cloud Value and Control Costs with the Deloitte FinOps Framework Transforming Aviation Maintenance with the Infosys Generative AI Solution Built on Amazon Bedrock How Vercel Shipped Cron Jobs in 2 Months Using Amazon EventBridge SchedulerHow contact center leaders can prepare for generative AI A Culture of Resilience How generative AI is energizing the beauty industryMigrating AWS Direct Connect to a new locationReduce the security and compliance risks of messaging apps with AWS Wickr AWS Guild Tournament builds cloud skills and innovative customer solutionsFrom chocolate sales to a career in cloud with training from AWS re/StartAmazon to Discontinue Honeycode App-Building Service 

In this podcast, they discuss Barracuda's failed attempt to drive out hackers, starting AWS security research, the value of limiting permissions, lessons learned from AWS certification, and an introduction to IAM policy validator and the security tool WAP ELIZER.

Last Week In AWS for the week of September 4, 2023, with Corey Quinn. Links:Amazon QuickSight adds scheduled and programmatic export to Excel format Amazon S3 now supports multivalue answer in response to DNS queriesAWS Backup now supports local time zone selections AWS Lambda Functions powered by AWS Graviton2 now available in 6 additional regions AWS Neuron adds support for Llama 2, GPT-NeoX, and SDXL generative AI models AWS Private CA launches Connector for Active Directory Streamlining Prior Authorization with Treatline’s Generative AI Platform for Healthcare and Insurance ProvidersUpdating AWS CloudFormation Stacks Without Service Disruption to Support Rapid Business InnovationWhy AWS Customers Choose to Procure Software Through Channel Partners in AWS Marketplace Announcing Amazon Managed Service for Apache Flink Renamed from Amazon Kinesis Data AnalyticsDeploy Amazon OpenSearch Serverless with Terraform How AWS AppFabric helps companies overcome tech overload Reinventing the in-store experience with Smart Store solutionsAutomatically generate impressions from findings in radiology reports using generative AI on AWS How MongoDB and AWS Collaborated to Enable Running the Open Source MongoDB Kafka Connector in Managed EnvironmentsEmbracing our broad responsibility for securing digital infrastructure in the European Union 

Last week in security news: How AWS built the Security Guardians program, Network Load Balancers now support Security groups, the Tool of the week, and more!Links:David Linthicum stakes out the position that in a multi-cloud world, centralized cloud security is now a must-have.Network Load Balancers now support Security groups How AWS built the Security Guardians program, a mechanism to distribute security ownershipKubernetes Security Issues (CVE-2023-3676, CVE-2023-3893, CVE-2023-3893) Tool of the week: SSOFixer