AWS Morning Brief
613 episodes - English - Latest episode: about 11 hours ago - ★★★★★ - 76 ratingsThe latest in AWS news, sprinkled with snark. Posts about AWS come out over sixty times a day. We filter through it all to find the hidden gems, the community contributions--the stuff worth hearing about! Then we summarize it with snark and share it with you--minus the nonsense.
Homepage Apple Podcasts Google Podcasts Overcast Castro Pocket Casts RSS feed
Episodes
Are AWS account IDs sensitive information?
August 03, 2022 14:30 - 7 minutes - 7.39 MBWant to give your ears a break and read this as an article? You’re looking for this link. Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts What's Corey up to? Follow Corey on Twitter (@quinnypig) See our recent work at the Duckbill Group Apply to work with Corey and the Duckbill Group to help lower your AWS bill
Crappy Clone of a Fast Database
August 01, 2022 10:00 - 6 minutes - 6.47 MBAWS Morning Brief for the week of August 1, 2022 with Corey Quinn.
Never Gonna Shut Me Up
July 28, 2022 14:30 - 4 minutes - 4.49 MBWant to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/Q2Zpg5jQe-Q Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts What's Corey up to? Follow Corey on Twitter (@quinnypig) See our recent work at the Duckbill Group Apply to work with Corey and the Duckbill Group to help lower your ...
The Mental Breakdown of Auto-Remediation
July 27, 2022 14:30 - 5 minutes - 4.94 MBLinks: The Nigerian government scores this week's S3 Bucket Negligence Award New Air-Gap Attack Uses SATA Cable as an Antenna to Transfer Radio Signals Automatically block suspicious DNS activity with Amazon GuardDuty and Route 53 Resolver DNS Firewall Use Security Hub custom actions to remediate S3 resources based on Macie discovery results There has been significant improvement to the AWS IAM documentation around IAM best practices. Artillery lets you use Lambdas for open s...
New Cloudscape Cloudscrapes
July 25, 2022 10:00 - 7 minutes - 6.78 MBAWS Morning Brief for the week of July 25, 2022 with Corey Quinn.
AWS's Disclosure Improvements
July 21, 2022 10:00 - 5 minutes - 5.37 MBLinks: Things I wish I knew about AWS WAF - Bot Control How to Protect Your Data from Ransomware with S3 Object Lock It seems that Experian has learned nothing from its string of data breaches The Makati city government is the winner of this week's S3 Bucket Negligence award. A quick overview of AWS principals, identity-based policies, and resource-based policies. Eligible customers can now order a free MFA security key Reported EKS IAM Authenticator Issue I found a handy ...
Azure's Security Vulnerabilities are Out of Control
July 20, 2022 14:30 - 8 minutes - 8.23 MBWant to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/azures_vulnerabilities_are_quack Want to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/5iTxtBnCPys Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts What's Co...
Immortal AWS Accounts, the Methuselah Pattern
July 18, 2022 10:00 - 7 minutes - 6.77 MBAWS Morning Brief for the week of July 18th, 2022 with Corey Quinn.
AWS Bakery: Rolls Everywhere
July 14, 2022 10:00 - 5 minutes - 4.77 MBLinks: My article on the dangers of chatbots led someone to share this concern-affirming tale. Extend AWS IAM roles to workloads outside of AWS with IAM Roles Anywhere How to tune TLS for hybrid post-quantum cryptography with Kyber hasIAMfailedopenyet.com is a site that triggers a Lambda function on every invocation that attempts to access something it cannot.
My Security Posture
July 13, 2022 14:30 - 14 minutes - 13.7 MBWant to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/coreys-security-posture-2022 Want to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/dHDY69hIvvk Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts What's Corey ...
How I Spent My Summer Vacation and College Tuition
July 11, 2022 10:00 - 5 minutes - 5.08 MBAWS Morning Brief for the week of July 11, 2022 with Corey Quinn.
Azure Insecurity Templates
July 07, 2022 10:00 - 4 minutes - 4.63 MBLinks: The most recently reported Azure vulnerability Amazon Photos exposes customers to risk I (re)discovered Scott Piper's work on Lesser Known Techniques for Attacking AWS Environments. PyPi python packages get caught sending stolen AWS keys to unsecured sites. TLS 1.2 to become the minimum TLS protocol level for all AWS API endpoints GuardDuty has new findings CloudFormation Guard had a new release.
The ChatOps Issue That No One's Chatting About
July 06, 2022 14:30 - 8 minutes - 7.46 MBWant to give your ears a break and read this as an article? You’re looking for this link: https://www.lastweekinaws.com/blog/the-chatops-issue-no-ones-chatting-about Want to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/eBKZ71OLjG8 Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts W...
Mr. Selipsky's Geography Class
July 05, 2022 10:00 - 7 minutes - 7.26 MBAWS Morning Brief for the week of July 4th, 2022 with Corey Quinn.
Enter Your Passwordle
June 30, 2022 10:00 - 5 minutes - 5.02 MBLinks: Azure has another security issue around its Synapse offering; this one was discovered by Tenable. Sysdig has a dive into the real threats to SSH on EC2. Tailscale has announced the ability to support Tailscale SSH. Chris Farris has a treatise on the The Philosphy of Prevention when it comes to cloud security. Google Cloud CISO Phil Venables asks whether security analogies are counterproductive. A security issue of sorts was discovered around sts:GetSessionToken Role C...
9 Ways AWS Made Me Headdesk When Using The CDK
June 29, 2022 14:30 - 16 minutes - 15.2 MBWant to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/9-ways-aws-cdk-headdesk Want to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/3Mf3_l6iEtA Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts What's Corey u...
Concerning Your DeepRacer's Extended Warranty
June 27, 2022 10:00 - 6 minutes - 6.05 MBAWS Morning Brief for the week of June 27, 2022 with Corey Quinn.
Bugcrowd Bugs the Crowd
June 23, 2022 10:00 - 6 minutes - 5.77 MBLinks: Travis CI continues to be a security nightmare. Implementing IAM Permission Boundaries with AWS SSO using Terraform A user reported a vulnerability to a company through Bugcrowd. The writeup is really worth reviewing. The RSA conference was apparently a super spreader event. Because nobody beats the Wiz, they've got a post up on the secret agents installed by cloud service providers. Partitioning and Isolating Multi-Tenant SaaS Data with Amazon S3 Service Notice – Upco...
Should I Take a Job at AWS?
June 22, 2022 14:30 - 15 minutes - 14.4 MBWant to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/should-you-take-a-job-at-aws/ Want to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/BCiUulzr9f8 Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts What's Corey...
Add a Mantium
June 21, 2022 10:00 - 6 minutes - 5.74 MBAWS Morning Brief for the week of June 20, 2022 with Corey Quinn.
Kubernetes Firewalln't
June 16, 2022 10:00 - 6 minutes - 6.29 MBLinks: Azure’s continuing security woes The Meeting Owl videoconference device apparently had significant security problems Brandon Sherman writes about how Temporal structures its access control strategy with regard to AWS This week's S3 Bucket Negligence Award goes to Mobike. Cloud Functions or Cloud Run launched from any GCP organization can bypass Google Kubernetes Engine (GKE) Authorized Networks restrictions Proof of someone migrating to SSO and disabling IAM users e...
re:Invent Keynote 2026: Analysis
June 15, 2022 10:00 - 8 minutes - 7.94 MBWant to give your ears a break and read this as an article? You’re looking for this link: https://www.lastweekinaws.com/blog/reinvent-keynote-incident/ Want to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/NGvLMsf4Wg8 Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts
Cars 4, featuring "Pixar Tractor on AWS”
June 13, 2022 10:00 - 6 minutes - 5.69 MBAWS Morning Brief for the week of June 13, 2022 with Corey Quinn.
Azure's Nightmare Year
June 09, 2022 10:00 - 5 minutes - 4.72 MBLinks: Nick Jones' review of the AWS Security Model I linked to previously. Microsoft Azure has seen 6 'nightmare' cloud security flaws over the past year. Unsecured Elasticsearch Data Replaced with Ransom Note AWS Systems Manager announces support for port forwarding to remote hosts using Session Manager When and where to use IAM permissions boundaries Security vulnerability in AWS's Managed Workflows for Apache Airflow
The Strange, Too Familiar Tale of Uncle Suitcase
June 08, 2022 10:00 - 6 minutes - 6.5 MBWant to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/the-strange-too-familiar-tale-of-uncle-suitcase/ Want to watch the full dramatic reenactment of this podcast? Watch the YouTube Video here: https://youtu.be/x70EypnAH1Y Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your pod...
Googling the AWS CDK V1
June 06, 2022 10:00 - 6 minutes - 6.11 MBAWS Morning Brief for the week of June 6, 2022, with Corey Quinn.
RSA Prelude
June 02, 2022 10:00 - 4 minutes - 6.14 MBLinks: Poisoned Python and PHP packages purloin passwords for AWS access No, your cloud environment doesn't need a sandbox Spring 2022 SOC reports are now available with 150 services in scope Canary Tokens
The Aurora Serverless Road Not Taken
June 01, 2022 10:00 - 7 minutes - 7.3 MBWant to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/the-aurora-serverless-road-not-taken/ Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts What's Corey up to? Follow Corey on Twitter (@quinnypig) See our recent work at the Duckbill Group Apply to work with Core...
Amazon Basics NXP Chips from Annapurna Labs
May 30, 2022 10:00 - 5 minutes - 5.59 MBAWS Morning Brief for the week of May 30, 2022 with Corey Quinn.
Security Model Citizen Development
May 26, 2022 10:00 - 5 minutes - 4.81 MBLinks: Google Cloud Build deep dive Andrea Brancaleoni found an ELB header security issue An article on You Can't Opt Out of Citizen Development DOJ Announces It Won’t Prosecute White Hat Security Researchers Choosing the right certificate revocation method in ACM Private CA a somewhat... controversial AWS Security Maturity Model AWS API calls that return credentials on GitHub
An AWS Free Tier Bill Shock: Your Next Steps
May 25, 2022 14:30 - 9 minutes - 8.92 MBWant to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/an-aws-free-tier-bill-shock-your-next-steps Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts What's Corey up to? Follow Corey on Twitter (@quinnypig) See our recent work at the Duckbill Group Apply to work wit...
Amazon's Original Risk Store
May 23, 2022 10:00 - 4 minutes - 4.48 MBAWS Morning Brief for the week of May 23, 2022 with Corey Quinn.
F5 Exploit the Exact Opposite of Refreshing
May 19, 2022 10:00 - 5 minutes - 7.76 MBLinks: "Hacking the Cloud" is a community-built encyclopedia npm dependency confusion attack. Windows Event Logs F5 appliance (software or hardware) full remote code execution with privileged access Wiz has a blog post up about securing AWS Lambda function URLs Build a strong identity foundation that uses your existing on-premises Active Directory How to use new Amazon GuardDuty EKS Protection findings Poro (an open source project) scans for publicly accessible assets in yo...
Fixing the AWS Free Tier is No Longer Optional
May 18, 2022 14:30 - 7 minutes - 7.27 MBWant to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/an-aws-free-tier-bill-shock-your-next-steps/ Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts What's Corey up to? Follow Corey on Twitter (@quinnypig) See our recent work at the Duckbill Group Apply to work wi...
Amazon Data Fencing
May 16, 2022 10:00 - 4 minutes - 4.57 MBAWS Morning Brief for the week of May 16, 2022 with Corey Quinn.
Suddenly Nobody Wants to Build Heroku
May 12, 2022 10:00 - 5 minutes - 8.06 MBLinks: S3 Bucket Negligence Award Mandoogle on how AWS's instance metadata service can be abused by attackers Heroku apparently had its entire database breached last week Wiz Research discovered a new vulnerability in Azure’s PostgreSQL Flexible Server service. AWS deleted packages they'd pushed to public repositories A guide to Cloud Security Orienteering
AWS's Deprecation Policy Is Like a Platypus
May 11, 2022 14:30 - 9 minutes - 9.23 MBWant to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/aws-s-deprecation-policy-is-like-a-platypus Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts What's Corey up to? Follow Corey on Twitter (@quinnypig) See our recent work at the Duckbill Group Apply to work wit...
AWS WindWanker
May 09, 2022 10:00 - 7 minutes - 6.78 MBAWS Morning Brief for the week of May 9, 2022 with Corey Quinn.
Serverlessly Get Your CloudGoat
May 05, 2022 10:00 - 6 minutes - 8.65 MBLinks: SELinux is unmanageable; just turn it off if it gets in your way AWS welcomes new Trans-Atlantic Data Privacy Framework How to control access to AWS resources based on AWS account, OU, or organization AWS has an article that explains what the confused deputy problem The CloudGoat pentest training tool now supports Lambda
How to Win in Cloud
May 04, 2022 14:30 - 10 minutes - 9.56 MBWant to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/how-to-win-in-cloud Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts What's Corey up to? Follow Corey on Twitter (@quinnypig) See our recent work at the Duckbill Group Apply to work with Corey and the Duckbill...
Amazon CloudWatch for Sharon
May 02, 2022 15:23 - 5 minutes - 5.24 MBAWS Morning Brief for the week of May 2, 2022 with Corey Quinn.
AWS Starts the Security Communication Improvement Slog
April 28, 2022 10:00 - 4 minutes - 5.79 MBLinks: Summit Route's AWS SCP Best Practices Reported Apache Log4j Hotpatch Issues cloudtrail-partioner
AWS's Open Source Problem
April 27, 2022 14:30 - 8 minutes - 7.66 MBWant to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/aws-s-open-source-problem Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts What's Corey up to? Follow Corey on Twitter (@quinnypig) See our recent work at the Duckbill Group Apply to work with Corey and the Du...
AWS GoForIt (With Expedia Group Compatibility)
April 25, 2022 10:00 - 7 minutes - 7.24 MBAWS Morning Brief for the week of April 25, 2022 with Corey Quinn.
gimme-aws-creds, Possibly Okta's AWS Creds
April 21, 2022 10:00 - 5 minutes - 7.68 MBCorey’s livetweet: https://twitter.com/quinnypig Eric Hammond’s old article: https://alestic.com/2014/09/aws-root-password/ Lightspin found a vulnerability: https://blog.lightspin.io/aws-rds-critical-security-vulnerability Expel’s incident report: https://expel.com/blog/incident-report-from-cli-to-console-chasing-an-attacker-in-aws/ Rhino Security Labs found a CVE in the AWS VPN Client: https://rhinosecuritylabs.com/aws/cve-2022-25165-aws-vpn-client/ DarkReading’s profile of AJ Yawn: h...
Shitposting as a Learning Style
April 20, 2022 14:30 - 8 minutes - 7.58 MBWant to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/shitposting-as-a-learning-style Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts What's Corey up to? Follow Corey on Twitter (@quinnypig) See our recent work at the Duckbill Group Apply to work with Corey and ...
Amazon's Competitive Advantage
April 18, 2022 10:00 - 5 minutes - 5.15 MBAWS Morning Brief for the week of April 18, 2022 with Corey Quinn.
Denonia Denials
April 14, 2022 10:00 - 5 minutes - 8.17 MBLinks: CashMama gets the S3 Bucket Negligence Award MailChimp’s cryptocurrency clients' mailing-list info stolen Denonia, the first Lambda-specific malware AWS IAM Access Analyzer
Taking AWS Account Logins For Granted
April 13, 2022 14:30 - 9 minutes - 8.79 MBWant to give your ears a break and read this as an article? You’re looking for this link. https://www.lastweekinaws.com/blog/taking-aws-account-logins-for-granted Never miss an episode Join the Last Week in AWS newsletter Subscribe wherever you get your podcasts Help the show Leave a review Share your feedback Subscribe wherever you get your podcasts What's Corey up to? Follow Corey on Twitter (@quinnypig) See our recent work at the Duckbill Group Apply to work with Core...
Requiem for a Weasel
April 11, 2022 10:00 - 7 minutes - 7.22 MBAWS Morning Brief for the week of April 11, 2022 with Corey Quinn.