Blog Posts Tagged with "AWS"

B68c8cbebf6b412d9fd4f9d0950a5901

Avoiding Holes in Your AWS Buckets

April 12, 2018 Added by:Sanjay Kalra

Amazon Web Services (AWS) S3 buckets are the destination for much of the data moving to the cloud, and many have been mistakenly misconfigured and left open to public access.

Comments  (0)

0da151db886b8b40e0a1d051485bedd3

An Open Letter to AWS CEO Andy Jassy on Cloud Security Innovation

March 16, 2018 Added by:Brian Ahern

Brian Ahern, CEO & Chairman of Threat Stack, writes an open letter to Amazon Web Services CEO Andy Jassy.

Comments  (0)

74a3faa048e151b7a9b61267399d79e3

Put Your S3 Buckets to the Test to Ensure Cloud Fitness

October 13, 2017 Added by:Tim Prendergast

Security measures that are critical to attain the basic level of security for your S3 buckets, which are always going to be a target because they store sensitive data.

Comments  (0)

259aa33b32fc31717e8a18f2dc9edc19

A Guide to AWS Security

August 20, 2015 Added by:Avishai Wool

Security in AWS is based on a shared responsibility model: Amazon provides and secures the infrastructure, and you are responsible for securing what you run on it.

Comments  (0)

Fc152e73692bc3c934d248f639d9e963

The Amazon Cloud And PCI Compliance

November 07, 2012 Added by:PCI Guru

The first part of the mythology revolves around what PCI compliant services Amazon Web Services (AWS) is actually providing. According to AWS’s Attestation Of Compliance, AWS is a Hosting Provider for Web and Hardware. The AOC calls out that the following services have been assessed PCI compliant...

Comments  (1)

0a8cae998f9c51e3b3c0ccbaddf521aa

Leap Second, Public Cloud and a Lesson in Enterprise Resiliency

July 06, 2012 Added by:Rafal Los

Everything in life will fail at some point - it is a smart thing to plan for and architect into your applications or services. Undoubtedly this type of strategy costs more - having multiple providers, more complex software, more data shipping and redundancy isn't cheap - but this is one lesson you must learn...

Comments  (0)

03b2ceb73723f8b53cd533e4fba898ee

Google as a Cyber Weapon: New Attack Method Discovered

April 30, 2012 Added by:Pierluigi Paganini

The lesson learned is that it is possible to use Google as a cyber weapon to lauch a powerful "Denial of Money" attack against other platforms. In reality, the service in this case hasn't been interrupted, but the attack has made it extremely expensive to run...

Comments  (0)

37d5f81e2277051bc17116221040d51c

The Cloud of Clouds: Amazon Web Services

November 22, 2011 Added by:Robert Siciliano

Security is paramount. Amazon states: “In order to provide end-to-end security and end-to-end privacy, AWS builds services in accordance with security best practices, provides appropriate security features in those services, and documents how to use those features..."

Comments  (1)

9259e8d30306ac2ef4c5dd1936e67634

Does ISO 27001 Mean That Information is 100% Secure?

May 10, 2011 Added by:Dejan Kosutic

ISO 27001 certification guarantees that the company complies with the standard and with its own security rules; it guarantees that the company has taken all the relevant security risks into account and that it has undertaken a comprehensive approach to resolve major risks...

Comments  (1)