I have found that not everyone has considered the role of security policy in an organization’s information security management program. Therefore, I will share some of my insights with the hope that it will help others articulate it to their organizations. A Security Policy is a written document that states… Continue reading
We spotted a new #AWS coin mining attack this weekend. Here's some of the interesting observations 🔎🔎🔎
📍Attacker had root access
📍Spun up 10 c5.4xlarge EC2s
📍Brought their own SSH keys 👀
📍Bot framework written in Golang
More tidbits 👇
The AWS Security Incident Guide came out last month and is chock-full of guidance, much of which is covered in @SANSCloudSec #SEC545 but with a deep AWS-specific twist. A definite must-read. https://d1.awsstatic.com/whitepapers/aws_security_incident_response.pdf
🌤️☁️ Subscribe to the new Cloud Security channel for great content from @KyleHaxWhy @emjohn20 @mosesrenegade @KennethGHartman and other SANS instructors and authors!
https://www.youtube.com/channel/UCMaclFQGtT064H9KNsfomGA
The Verge: Microsoft’s new Windows File Recovery tool lets you retrieve deleted documents.
https://www.theverge.com/21306670/microsoft-windows-file-recovery-tool-app-download-features
Can you articulate the difference? https://www.techradar.com/news/cloud-computing-vs-edge-computing
