AWS Morning Brief
613 episodes - English - Latest episode: about 10 hours ago - ★★★★★ - 76 ratingsThe latest in AWS news, sprinkled with snark. Posts about AWS come out over sixty times a day. We filter through it all to find the hidden gems, the community contributions--the stuff worth hearing about! Then we summarize it with snark and share it with you--minus the nonsense.
Homepage Apple Podcasts Google Podcasts Overcast Castro Pocket Casts RSS feed
Episodes
The Releases are Coming Fast and Furious Now
November 30, 2022 15:30 - 4 minutes - 5.79 MBLinks: Last Week in AWS Community Slack VPC Lattice AWS Supply Chain OpenSearch Serverless AWS Verified Access Stay Up To Date with re:Quinnvent Sign up for the re:Quinnvent Newsletter Check out the re:Quinnvent playlist on YouTube If you’re on site: Join Corey for a Nature Walk through the Expo Hall beginning at the Fortinet booth today (11/29/22) at 1pm PST or For drinks at Atomic Liquors tonight at 8:15 pm PST. Tomorrow evening is re:Play, if you see Corey there, ple...
The Releases of re:Invent are in Full Swing
November 29, 2022 15:30 - 5 minutes - 8.29 MBLinks: Last Week in AWS Community Slack Amazon ECS Service Connect Amazon RDS Optimized Reads and Writes Fully Managed Blue / Green Deployments in Aurora and RDS Protect Sensitive Data with CloudWatch Logs Amazon cloudWatch Cross-Account Observability Stay Up To Date with re:Quinnvent Sign up for the re:Quinnvent Newsletter Check out the re:Quinnvent playlist on YouTube If you’re on site: Join Corey for a Nature Walk through the Expo Hall beginning at the Fortinet booth t...
Pre:Invent Edition
November 28, 2022 17:00 - 7 minutes - 10.3 MBLinks: Tiered storage for MSK Lambda telemetry API Resource Explorer Launched GP3 comes to RDS Amazon Time Sync is now available as a public NTP service Zurich region Spain Region Hyderabad Region Faster glacier restores multiple MFA devices Finch AWS Fault Isolation Boundaries whitepaper Stay Up To Date with re:Quinnvent Sign up for the re:Quinnvent Newsletter Check out the re:Quinnvent playlist on YouTube Help the show Share your feedback Subscribe wherever you g...
The Feudal Lords of Amazon: AWS' Infinite Service Launches and Counterproductive Culture
November 23, 2022 15:30 - 8 minutes - 12.3 MBWant to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/the-feudal-lords-of-amazon/ Want to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/g1guW6tiR50 Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts Buy our merch ...
IAM Over the Moon About Multiple MFA Devices
November 21, 2022 11:00 - 7 minutes - 10.9 MBLinks: Amazon NAT Gateway Now Allows You to Select Private IP Address for Network Address Translation Amazon S3 Glacier improves restore throughput by up to 10x when retrieving large volumes of archived data Amazon Time Sync is now available over the internet as a public NTP service AWS re:Post launches a community leaderboard Announcing the new Applications widget on AWS Console Home Amazon S3 request-level information on use of access control lists (ACLs) coming to S3 server...
The Canary in the Git Mine
November 17, 2022 11:00 - 5 minutes - 7.08 MBLinks: A super-neat exploration of the Lambda execution environment from a security perspective. Detect and block advanced bot traffic How to evaluate and use ECDSA certificates in AWS Certificate Manager - AWS released support for ECDSA certificates. Canary Tokens
How To Learn Something New: Kubernetes The Much Harder Way
November 16, 2022 15:30 - 8 minutes - 11.7 MBWant to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/How-To-Learn-Something-New-Kubernetes-the-Much-Harder-Way Want to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/bpp5tpgU6CE Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get...
gp3 for thee, RDS
November 14, 2022 11:00 - 6 minutes - 9.06 MBLinks: Ben Kehoe has left iRobot. And where's he going next? Presumably to re:Invent! I am too, with my re:Quinnvent nonsense Amazon Athena announces Query Result Reuse to accelerate queries Amazon EC2 enables you to opt out of directly shared Amazon Machine Images Amazon EC2 placement groups can now be shared across multiple AWS accounts Amazon EC2 now supports specifying list of instance types to use in attribute-based instance type selection for Auto Scaling groups, EC2 Fle...
Overly OpenSearch
November 10, 2022 11:00 - 3 minutes - 5.12 MBLinks: I really like this idea of an AWS account solely for getting into other AWS accounts. Amazon accidentally exposed an internal server packed with Prime Video viewing habits. How to use trust policies with IAM roles - "It's an older post sir, but it checks out." OpenSSL Security Advisories - November 2022 Tool of the week: s3crets_scanner
An alterNAT Future: We Now Have a NAT Gateway Replacement
November 09, 2022 15:30 - 7 minutes - 10.6 MBWant to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/an-alternat-future-we-now-have-a-nat-gateway-replacement/ Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts Buy our merch https://store.lastweekinaws.com What's Corey up to? Follow Corey on Twitter (@quinnypig...
EIP Moving Day
November 07, 2022 11:00 - 8 minutes - 11.7 MBLinks: Amazon MSK now offers a new low-cost storage tier that scales to virtually unlimited storage Amazon Virtual Private Cloud (VPC) now supports the transfer of Elastic IP addresses between AWS accounts AWS IoT Core announces Location Action to route location data from IoT devices to Amazon Location Service Amazon Connect Customer Profiles now surfaces additional customer information in the Amazon Connect Agent Application Keeping Pace with FinServ Regulatory Compliance Dem...
Azure Makes it Worse
November 03, 2022 10:00 - 5 minutes - 5.26 MBLinks: SOCRadar demonstrated a significant leak that spanned the world; it distills down to an Azure equivalent of an open S3 bucket. This security recap of 2022 Google Next and Microsoft Ignite is worth reading if you're doing things in that particular side of the ecosystem. IAM Access Analyzer findings now support Amazon SNS topics and five other AWS resource types to help you identify public and cross-account access DNS Analysis Server is a tool that can be used to demonstra...
AWS re:Invent: What You Actually Need To Know Before You Go
November 02, 2022 14:30 - 10 minutes - 9.57 MBWant to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/aws-re-invent-what-you-actually-need-to-know-before-you-go/ Want to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/lZPDfTXmfI4 Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you g...
The pre:Invent Drumbeat Starts
October 31, 2022 10:00 - 8 minutes - 8 MBLinks: Amazon Aurora supports cluster export to S3 Amazon Cognito now provides user pool deletion protection Amazon Connect adds real-time schedule adherence Amazon EC2 enables easier patching of guest operating system and applications with Replace Root Volume Amazon Neptune Serverless is now generally available Introducing the Amazon OpenSearch Service delivery program Amazon SageMaker Canvas supports tags to track and allocate costs incurred by users AWS Console Mobil...
The Real Reason Cloud IDE Adoption Is Lagging
October 26, 2022 14:30 - 8 minutes - 7.86 MBWant to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/the-real-reason-cloud-ide-adoption-is-lagging Want to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/fRc0maN0Z_I Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your pod...
Giving a Shirt about S3
October 24, 2022 10:00 - 5 minutes - 5.44 MBLinks: Go to snark.cloud/shirt to get your limited edition S3 8th Wonder of the World t-shirt to benefit our friends at 826 National Amazon CloudFront adds fields for origin latency and ASN in real-time logs for more granular insights Amazon EC2 adds Service Quotas for Amazon Machine Images (AMIs) Amazon WorkDocs adds support for Apple Silicon MacBooks AWS Control Tower now available in GovCloud (US) Regions Announcing increased AWS IAM Identity Center default quota values A...
Azure: Less a Cloud Than Performance Art
October 20, 2022 10:00 - 4 minutes - 4.58 MBLinks: A walkthrough that takes us on a whirlwind tour of AWS Secrets Manager and the principle of least-privilege. Azure Arc-enabled Kubernetes privilege escalation vulnerability Datadog has an report out on the The State of AWS Security Simplifying serverless permissions with AWS SAM Connectors Tool of the week: trailscraper gets signal from noise when it comes to CloudTrail logs.
A Brief History of Kubernetes, Its Use Cases, and Its Problems
October 19, 2022 14:30 - 8 minutes - 7.86 MBWant to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/a-brief-history-of-kubernetes-its-use-cases-and-its-problems Want to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/StlZwvsq9tc Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you ...
Blame Steven Postmortems
October 17, 2022 10:00 - 7 minutes - 6.93 MBLinks: Amazon Chime announces new mobile apps with features to improve your meeting experience Amazon Detective improves search by supporting case insensitivity AWS Activate is now open to all startups AWS CloudFormation StackSets increases limits on three service quotas AWS IQ now supports partners and independent consultants in Australia, Europe, Japan, and other regions Announcing a new Cost Explorer console experience Omdia study: how the media and entertainment indust...
Higher Cross-region SSO Availability
October 13, 2022 10:00 - 3 minutes - 4.76 MBLinks: AWS Permission Boundaries for Dummies. Improve the Availability of Existing Okta IAM Federation Setup Using Multi-Region SAML Endpoints Use existing Logging and Security Account with AWS Control Tower IAM Access Analyzer makes it simpler to author and validate role trust policies Tool of the week: cleanup-aws-access-keys
AWS Data Transfer Charges: Ingress Actually Is Free
October 12, 2022 14:30 - 9 minutes - 8.49 MBWant to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/aws-data-transfer-charges-ingress-actually-is-free/ Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts Buy our merch https://store.lastweekinaws.com What's Corey up to? Follow Corey on Twitter (@quinnypig) See...
Getting Lost in Cloud Map
October 11, 2022 10:00 - 6 minutes - 5.61 MBLinks: AWS Cloud Map Updates Service Level Agreement Amazon DevOps Guru now allows customers control over the notifications they receive Amazon S3 Object Lambda now supports using your own code to modify the results of S3 HEAD and LIST API requests Amazon SageMaker Clarify now can provide near real-time explanations for ML predictions AWS Lambda Functions powered by AWS Graviton2 now available in 12 additional regions The five most visited Amazon DynamoDB blog posts of 2022...
Basic Security Alerting
October 06, 2022 10:00 - 4 minutes - 4.31 MBLinks: AWS RDS Aurora wish list The Confusing Lifetimes of AWS IAM Identity Center Access Tokens AWS announces updated Support Plans Console with new IAM controls How to automatically build forensic kernel modules for Amazon Linux EC2 instances Tool of the week: aws-security-survival-kit
Confidential Computing Is a Cloud Paranoia-Based Wasteland
October 05, 2022 14:30 - 7 minutes - 9.64 MBWant to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/confidential-computing-is-for-the-tinfoil-hat-brigade Want to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/z_jD64jGhhI Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get you...
Amazon File Cash
October 03, 2022 10:00 - 5 minutes - 5.56 MBLinks: Amazon S3 Replication Time Control for predictable replication time now available in the AWS China (Beijing) and AWS China (Ningxia) Regions Amazon SageMaker Canvas supports mathematical functions and operators for richer data exploration Snow Amazon Linux 2 (AL2) Amazon Machine Image (AMI) available on all Snow Family jobs Announcing 1-Click templates and tutorials in AWS Budgets AWS Certificate Manager Private Certificate Authority is now AWS Private Certificate Au...
Inadvertent Compliance Week
September 29, 2022 10:00 - 5 minutes - 5.56 MBLinks: The Challenges of Assessing Kubernetes clusters for PCI Compliance. Tailscale released a post titled What we learned (and can share) from passing our SOC 2 Type II audit that is absolutely worth your time and attention. Our friends at Wiz discovered a vulnerability in Oracle Cloud’s security where you could mount other customers' EBS volumes simply by asking the API to do so. From the Mouth of AWS Horse: Announcing an update to IAM role trust policy behavior In the wo...
The Baffling Maze of Kubernetes
September 28, 2022 14:30 - 5 minutes - 5.39 MBWant to give your ears a break and read this as an article? You’re looking for this link. Want to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/iOqSjqhD2lc Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts Buy our merch https://store.lastweekinaws.com What's Corey up to? Follow C...
Getting Twitchy About the AWS Bill
September 26, 2022 10:00 - 8 minutes - 8.02 MBAWS Morning Brief for the week of Monday, September 26th with Corey Quinn.
Connecting All William-Nilliam
September 22, 2022 10:00 - 5 minutes - 4.74 MBLinks: If you're near Arlington Virgina, come on by Highline this evening at 7PM and let me buy you a drink. Are you confused by AWS's KMS service? Me too. This guide to KMS helped a lot--and you really don't want to be confused by security things. BHIM leaks the details of 7.26 million users and scores themselves an S3 Bucket Negligence Award in the process. Stop doing this! Securely Using External ID for Accessing AWS Accounts Owned by Others - AWS blesses us with a great rund...
The Next AWS CMO: Corey Quinn
September 21, 2022 14:30 - 8 minutes - 11.2 MBWant to give your ears a break and read this as an article? You’re looking for this link. Want to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/2ve_Xmtx7_o Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts Buy our merch https://store.lastweekinaws.com What's Corey up to? Follow C...
The Swole Architected Framework
September 19, 2022 10:00 - 6 minutes - 6.45 MBAWS Morning Brief for the week of September 19th, 2022 with Corey Quinn.
Naming Things Accurately
September 15, 2022 10:00 - 5 minutes - 4.73 MBLinks: Nick Frichette wrote an incredibly handy guide on the ordered steps to take to avoid CloudFront or DNS domain takeovers on AWS. This handy walkthrough talks about how to configure something that shrieks its head off whenever someone logs into AWS via the root account. The Center for Internet Security just released an update to the AWS version of their security benchmarks, and this approachable post goes through what's new. Introducing message data protection for Amazon SN...
Google Cloud Functions Is Surprisingly Delightful
September 14, 2022 14:30 - 8 minutes - 7.5 MBWant to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/google-cloud-functions-is-surprisingly-delightful Want to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/lV-Q0EO63fo Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your po...
AWS Deft Punk
September 12, 2022 10:00 - 7 minutes - 6.69 MBAWS Morning Brief for the week of September 12, 2022 with Corey Quinn.
Mobile Authentication to AWS is Hard
September 08, 2022 10:00 - 5 minutes - 5.34 MBLinks: 1Password frankly got it wrong with their assertion that you shouldn't bother with MFA for 1Password itself. Joe Frichette has a handy guide on the ordered steps to take to avoid CloudFront or DNS domain takeovers on AWS Over 1,000 iOS apps found exposing hardcoded AWS credentials Chris Farris has a great post covering how to handle Incident Response in AWS. Announcing new AWS IAM Identity Center APIs to manage users and groups at scale How to subscribe to the new Sec...
The Harrowing Search for the Elusive Technical Answer
September 07, 2022 14:30 - 9 minutes - 8.78 MBWant to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/the-harrowing-search-for-the-elusive-technical-answer Want to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/mZDquxNO09s\\ Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get y...
26.5 AWS Regions
September 06, 2022 10:00 - 6 minutes - 8.98 MBAWS Morning Brief for the week of September 5, 2022 with Corey Quinn.
The Spiritual Alignment of Cloud Economics
September 01, 2022 10:00 - 4 minutes - 4.6 MBLinks: Last week LastPass reported (yet another) security issue, wherein their source code was stolen. Finally: an honest recap of fwd:cloudsec and re:Inforce 2022 from someone who had the stomach to sit through the entirety of the latter. The Register reports on a growing trend of using AWS resources to hide phishing attacks. Expanded eligibility for the free MFA security key program How to centralize findings and automate deletion for unused IAM roles Identifying publicly ...
How Google Cloud and AWS Approach Customer Carbon Emissions
August 31, 2022 14:30 - 8 minutes - 8.33 MBWant to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/how-google-cloud-and-aws-approach-customer-carbon-emissions Want to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/eyO1DqP9LhY Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you g...
The Root Beer Conference
August 29, 2022 10:00 - 7 minutes - 6.92 MBAWS Morning Brief for the week of August 29, 2022 with Corey Quinn.
Rumors All Atwitter
August 25, 2022 10:00 - 5 minutes - 7.65 MBLinks: Fascinating allegations have come from Twitter's former CISO about an alleged trashfire approach to security intrinsic to their culture. Microsoft employees exposed their own Azure credentials via GitHub A fascinating discovery by the folks at Wiz How to detect suspicious activity in your AWS account by using private decoy resources Remember to opt out of AWS AI data usage.
Amazon SageMaker is Responsible for My Surprise Bill
August 24, 2022 14:30 - 10 minutes - 14.5 MBWant to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/sagemaker_is_responsible_for_my_surprise_bill/ Want to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/LCZjSZhRAjs Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcas...
Low Tech Earthquake Detection
August 22, 2022 10:00 - 7 minutes - 6.95 MBAWS Morning Brief for the week of August 22, 2022 with Corey Quinn.
Trivy-al Releases
August 18, 2022 10:00 - 4 minutes - 4.25 MBLinks: Apparently there's been some dependency confusion in AWS CodeArtifact. PlatformQ wins this week's S3 Bucket Negligence Award Found an interesting article that suggests that ransomware in AWS isn't a purely theoretical concern. Protocol interview with AWS CISO CJ Moses about his cloud security challenges. AWS co-announces release of the Open Cybersecurity Schema Framework (OCSF) project Trivy is a security scanner for vulnerabilities in container images, Git repositorie...
An Unexpected Love Letter to Azure
August 17, 2022 14:30 - 8 minutes - 8.25 MBWant to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/an_unexpected_love_letter_to_azure/ Want to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/NIsF_NS1B0k Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts Buy ou...
AWS Private 5G v2
August 15, 2022 10:00 - 7 minutes - 6.99 MBAWS Morning Brief for the week of August 15, 2022 with Corey Quinn.
Twilio's Insecure Text Message Issue
August 11, 2022 10:00 - 5 minutes - 4.77 MBLinks: Twilio's disclosure of an Employee and Customer Account Compromise. Update of AWS Security Reference Architecture is now available As the linked tweet says: "If you check out the AWS docs on IAM policy parsing order there is a flowchart that shows you can get an Allow outcome before the boundary policy is evaluated." IAM-Deescalate: is an open source tool to help users reduce the risk of privilege escalation.
Cadence Is Culture: Why Amazonians Need to Overload Us at re:Invent
August 10, 2022 14:30 - 9 minutes - 13 MBWant to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/why_amazon_cant_end_the_release_tidal_wave/ Want to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/eKMxBNF5N-k Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts...
Very Tired Lambda Pricing
August 08, 2022 10:00 - 7 minutes - 6.64 MBAWS Morning Brief for the week of August 8, 2022 with Corey Quinn.
Single Sign On, Multiple Names
August 04, 2022 10:00 - 4 minutes - 4.38 MBLinks: 35K GitHub repos had been compromised by malware. GitHub security issued a response within 24 hours showing what their findings indicate and clarifying the situation. Scale your workforce access management with AWS IAM Identity Center (previously known as AWS SSO) Welcoming the AWS Customer Incident Response Team - Surprisingly this doesn't require a paid support plan. iamlive generates IAM policies from AWS calls via client-side monitoring