Episode Summary
Last week in security news: Twilio's disclosure of an Employee and Customer Account Compromise, an update of AWS Security Reference Architecture, and more!
Episode Show Notes & Transcript
Links:
- Twilio's disclosure of an Employee and Customer Account Compromise.
- Update of AWS Security Reference Architecture is now available
- As the linked tweet says: "If you check out the AWS docs on IAM policy parsing order there is a flowchart that shows you can get an Allow outcome before the boundary policy is evaluated."
- IAM-Deescalate: is an open source tool to help users reduce the risk of privilege escalation.