📣 Issue 84 is out. Highlights: - Amazon Inspector enhances the security engine for container images scanning. - AWS CloudTrail network activity events for VPC endpoints now generally available. - whoAMI: A cloud image name confusion attack by Seth Art. - Uncovering a Hidden

📣 Issue 85 is out. Highlights: - AWS WAF enhances Data Protection and logging experience. - AWS Network Firewall introduces automated domain lists and insights. - Certificate-Based Authentication is now available on Amazon AppStream 2.0 multi-session fleets. - Amazon Verified

📣 Issue 85 & 87 is out. aws-cloudsec.com/p/issue-86-and…

📣 Issue 88 is out: aws-cloudsec.com/p/issue-88

📣 Issue 89 & 90 is out: aws-cloudsec.com/p/issue-89-and…

📣 Issue 91 is out: aws-cloudsec.com/p/issue-91

📣 Issue 92 is out: aws-cloudsec.com/p/issue-92

📣 Issue 93 is out. Highlights: - AWS STS global endpoint now serves requests locally in regions enabled by default. - Amazon Verified Permissions now supports policy store deletion protection. - Amazon SES now supports logging email sending events through AWS CloudTrail. -

📣 Issue 94 is out. Highlights: - FBI Releases Annual Internet Crime Report. - Mandiant M-Trends 2025 report. - Amazon Cognito now supports refresh token rotation. - Amazon EBS now supports additional resource-level permissions for copying EBS snapshots. - AWS Account Management

📣 Issue 95 is out. Highlights: - Amazon Verified Permissions now supports policy store tagging. - Resource control policies (RCPs) are now available in the AWS GovCloud (US) Regions. - Why Recreating an IAM Role Doesn't Restore Trust: A Gotcha in Role ARN by Nick Frichette -

📣 Issue 96 is out. Highlights: - Amazon GuardDuty Malware Protection for EC2 now available in AWS GovCloud (US) Regions. - Amazon VPC adds CloudTrail logging for VPC resources created by default. - Tales from the cloud trenches: The Attacker doth persist too much, methinks by

📣 Issue 97 is out. Highlights: - Amazon Elastic Container Registry (ECR) supports image replication between the AWS GovCloud (US) Region. - AWS CodeBuild adds support for new IAM condition keys. - Amazon Inspector enhances container security by mapping ECR images to running

📣 Issue 98 is out. Highlights: - AWS Secrets Manager announces support for cost allocation tags for secrets. - AWS Organizations now supports Internet Protocol Version 6 (IPv6). - Amazon EC2 Mac instances now support configurable System Integrity Protection (SIP) settings. -

🎉 🎉 🎉 🎉 📣 Issue 100 is out.  🎉 🎉 🎉 🎉 ❤️ Thank You to all our readers! ❤️ aws-cloudsec.com/p/issue-99-and…

📣 Issue 101 is out. Highlights: - Amazon VPC Route Server announces logging enhancements. - AWS Site-to-Site VPN introduces three new capabilities for enhanced security. - AWS KMS launches on-demand key rotation for imported keys. - AWS Network Firewall launches new monitoring

📣 Issue 102 is out. Highlights: - AWS WAF now supports automatic application layer distributed denial of service (DDoS) protection. - AWS KMS adds support for post-quantum ML-DSA digital signatures. - AWS CloudTrail enhances logging for Amazon S3 DeleteObjects API. - Amazon S3

AWS Cloud Security Weekly has moved to awssecuritydigest.com Make sure to follow AWS Security Digest to get the latest issues and updates.