Practical AWS Logging in 5 Steps
Logging is probably one of the most crucial areas when a security or operational incident needs to be investigated…. is what most technology practitioners would say. But, monitoring logs for malicious or unusual activity, carrying out threat hunting are proactive techniques to help organisations catch infiltrations or compromise early. This is KEY to reducing the […]
14 AWS S3 Security Best Practices
S3 or Simple Storage Service : the most popular service in AWS and undoubtedly the most low hanging service from a security misconfiguration perspective. Over the years, organisations hosted on public cloud have seen a series of breaches arising due to misconfigured S3 buckets or lack of S3 security controls. Organisations such as WWE, Dow […]
Denonia – Guide to Prevention & Detection
Well it’s not unheard of, that security issues, malware or exploits often follow soon after an emerging technology finds prominence. Denonia, the first Lambda malware is out. Originally discovered by Cado Labs a few days ago, Denonia specifically targets Lambda functions with the intent to deploy code that carries out bitcoin mining, hence significantly increasing AWS costs […]
17 Open Source Cloud Security Tools You Should Explore
Cloud adoption is growing, at an ACCELERATED rate! The bad guys love the cloud too, since it’s where valuable data resides, and is often prone to misconfigurations or errors if it’s not dealt with properly. We’ll talk about 17 open source cloud security tools that have helped organizations globally over the years. Here goes! Cloud […]
7 AWS Networking Services Security Teams Should Know Of
Welcome to Part 1 of a blog series that would cover various AWS services, and documented in a manner that a seasoned security or cloud practitioner could easily relate to. The idea here is not to deep dive into specific services, but to be a ready reckoner for security and devops teams embarking on a […]
7 AWS Networking Best Practices for Scalable Operations
Much like colocation or captive data centers, public cloud environments consist of physical networks, which are broken down into virtual networks and provided to customers. With this blog post we will go over what a typical cloud deployment looks like and some AWS networking best practices around configuring and managing the same. AWS Networking Basics […]
13 AWS Security Services You Need to Try Today
Welcome to a curated list of AWS security services that are documented in a manner that a seasoned security practitioner could easily relate to. The idea here is to provide ready reckoner of the right set of AWS security tools or services that are provided natively with AWS for security teams embarking on a “security […]