Our new Adversary Universe website aims to provide customers and researchers with a detailed view of the threats they face everyday. Read about it in the CrowdStrike blog: bit.ly/37DSbd2 via adam_cyber #CSAdversaryUniverse

Who out there is using AWS IAM Permissions Boundaries? Thoughts?

📢 Major update to iamlive today with the addition of a new (experimental) proxy mode which will generate AWS IAM policies that include the "Resource" property. This includes a full mapping of every resource in the SAR. Looking for initial feedback! github.com/iann0036/iamli…

fwd:cloudsec 2021 will be in Salt Lake City, Utah on September 13 and 14! (2 days! 🤯) We'll be at the Marriott City Center. It'll be hybrid (in-person and streamed). CFP will open May 16; remote speakers who can't make it will be streamed in.

Sounds like fun 😈 aws.amazon.com/about-aws/what…

Ben Kehoe Hi Ben! Although I can't turn back time on any frustration caused, we heard your feedback and have good news to share! 🗞 All new and existing accounts created using AWS Organizations are now no longer automatically subscribed to marketing emails. Thanks for raising this.🤝 ^KB

This is awesome aws.amazon.com/about-aws/what…

Have you ever wondered which AWS Account an S3 bucket belongs to? Did you think that with 10^12 possible account ids it would be impossible to guess? Here is one way to do it: cloudar.be/awsblog/findin…

AWS has started adding an inline policy to deny s3:* on compromised access keys in addition to their quarantine policy which is more focused on stopping bitcoin miners. This has the potential for greater customer impact but exfil is what companies tend to be more concerned about.

Following the release of s3-account-search to find AWS account id of public s3 object/bucket, here an example in a GIF 🎥. It took 48s to find the AccountID. - github.com/WeAreCloudar/s… cc Ben Bridts‏ Cloudar

It is possible to identify the account IDs of the owners of S3 buckets. What can one now do with this? What does this change? If this were applied to our resource types beyond S3 buckets, would that change things?

Read now in the CrowdStrike blog: “Hardening Your Cloud Against SMTP Abuse” → bit.ly/3dF9yfA via Spencer Gietzen

Hey check out my latest blog on SMTP abuse in AWS crowdstrike.com/blog/how-to-ha…