CSOonline

AWS access control confusion enables cross-account attacks

The Amazon Web Services identity and access management (IAM) mechanism is complex, and not fully understanding its particularities often leads to misconfigurations and exposed cloud assets.
InfoQ

AWS Open-Sources Policy-Based Access Control Language Cedar

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Traditional caching fails to stop "thundering ...
Network World

AWS secures access to cloud apps without using VPNs

Amazon Web Services has launched a service that secures user access to its cloud applications without requiring a VPN. AWS Verified Access, which the company previewed last November, validates every ...
CSOonline

New open-source tool tackles pesky access denial messages in AWS

Administrators befuddled by AWS access-denied messages will welcome a new open-source tool announced Thursday by cloud infrastructure security company Ermetic. The Access Undenied tool analyzes AWS ...
Nasdaq

Rapid7 Expands Exposure Command with Support for AWS Resource Control Policies

BOSTON, Nov. 20, 2024 (GLOBE NEWSWIRE) -- Rapid7, Inc. (NASDAQ: RPD), a leader in extended risk and threat detection, today announced that its Exposure Command solution now supports Amazon Web ...
TechCrunch

AWS open sources fuzzing tool SnapChange and policy-based access control language Cedar

Amazon Web Services (AWS) has launched two new open source projects today, a move designed in part to address concerns around software supply chain security. The Amazon cloud computing subsidiary ...