DEV Community

Cover image for Issue 54 of AWS Cloud Security Weekly
AJ for AWS Community Builders

Posted on • Originally published at aws-cloudsec.com

Issue 54 of AWS Cloud Security Weekly

(This is just the highlight of Issue 54 of AWS Cloud Security weekly @ https://aws-cloudsec.com/p/issue-54 << Subscribe to receive the full version in your inbox weekly for free!!).

What happened in AWS CloudSecurity & CyberSecurity last week July 16-July 22, 2024?

  • AWS Artifact Reports console now features improved search functionality, enabling quick access to compliance reports. Some improvements include: locate specific reports by conducting targeted searches across various columns such as report title, category, series, description, and ARN. For instance, if you're looking for SOC (System and Organization Controls) reports, you can search the "Title" column using the "contains" operator with the keyword "SOC".
  • In AWS IAM Identity Center, you now customize the session duration specifically for Amazon Q Developer, independent of other integrated applications within IAM Identity Center and the AWS access portal, allowing yo to maintain session in the integrated development environment (IDE) for up to 90 days without needing to re-authenticate. Previously, session durations for Q Developer in the IDE were aligned with those of other IAM Identity Center integrated applications and the AWS access portal, ranging from 15 minutes to 90 days.
  • AWS Private Certificate Authority (AWS Private CA) now supports ARM architecture in Kubernetes environments, enabling the use of the AWS Private CA Connector for Kubernetes with AWS Graviton instances in AWS or ARM-based hosts on premises. The connector facilitates the issuance of private certificates from AWS Private CA, a managed CA backed by hardware security modules (HSMs), ensuring robust security for TLS-based authentication and encryption across Kubernetes containers, applications, and service meshes.This capability extends to clusters deployed via Amazon Elastic Kubernetes Service (Amazon EKS), on-premises setups, or other infrastructure environments.

Trending on the news & advisories (Subscribe to the newsletter for details):

  • CrowdStrike update crashes Windows systems and caused outages worldwide & has released the fix. Link. AWS has recovery steps.
  • Suspected Scattered Spider hacker linked to MGM attack arrested in the UK.

Top comments (0)