Latest
Tightening S3 access with Access Points
Why a single fat bucket policy is a liability, and how Access Points let you scope access per workload.
Read the briefDispatches on AWS security, one brief a week
The Brief
A weekly brief on AWS security — concise notes on new services, hardening patterns, and the cloud-security landscape.
Earlier briefs
- GuardDuty for EKS: turn on the audit-log signal Container workloads hide a lot. EKS Protection reads the Kubernetes audit log so you see the control-plane moves attackers make.
- Clean up least privilege with unused-access findings IAM Access Analyzer can tell you which permissions, roles, and keys have gone cold. A short playbook for acting on it.