AWS News Blog
Category: Security
New – Using Amazon GuardDuty to Protect Your S3 Buckets
As we anticipated in this post, the anomaly and threat detection for Amazon Simple Storage Service (Amazon S3) activities that was previously available in Amazon Macie has now been enhanced and reduced in cost by over 80% as part of Amazon GuardDuty. This expands GuardDuty threat detection coverage beyond workloads and AWS accounts to also help you protect […]
Amazon Detective – Rapid Security Investigation and Analysis
Almost five years ago, I blogged about a solution that automatically analyzes AWS CloudTrail data to generate alerts upon sensitive API usage. It was a simple and basic solution for security analysis and automation. But demanding AWS customers have multiple AWS accounts, collect data from multiple sources, and simple searches based on regular expressions are […]
AWS Security Hub Now Generally Available
I’m a developer, or at least that’s what I tell myself while coming to terms with being a manager. I’m definitely not an infosec expert. I’ve been paged more than once in my career because something I wrote or configured caused a security concern. When systems enable frequent deploys and remove gatekeepers for experimentation, sometimes […]
AWS Firewall Manager: Central Management for Your Web Application Portfolio
There’s often tension between distributed and centralized control, especially in larger organizations. While a distributed control model allows teams to move fast and to respond to specialized local needs, a central model can provide the right level of oversight for global initiatives and challenges that span all teams. We’ve seen this challenge arise first-hand when […]
AWS HIPAA Eligibility Update (July 2017) – Eight Additional Services
It is time for an update on our on-going effort to make AWS a great host for healthcare and life sciences applications. As you can see from our Health Customer Stories page, Philips, VergeHealth, and Cambia (to choose a few) trust AWS with Protected Health Information (PHI) and Personally Identifying Information (PII) as part of […]
Amazon EC2 Systems Manager Patch Manager now supports Linux
Hot on the heels of some other great AWS Systems Manager updates is another vital enhancement: the ability to use Patch Manager on Linux instances! We launched Patch Manager with SSM at re:Invent in 2016 and Linux support was a commonly requested feature. Starting today we can support patch manager in: Amazon Linux 2014.03 and […]
Prepare for the OWASP Top 10 Web Application Vulnerabilities Using AWS WAF and Our New White Paper
Are you aware of the Open Web Application Security Project (OWASP) and the work that they do to improve the security of web applications? Among many other things, they publish a list of the 10 most critical application security flaws, known as the OWASP Top 10. The release candidate for the 2017 version contains a […]
Scale Your Security Vulnerability Testing with Amazon Inspector
My colleague Eric Fitzgerald wrote the guest post below in order to show you how to use an AWS Lambda function to forward Amazon Inspector findings to your ticketing and workflow systems. — Jeff; At AWS Re:Invent 2015 we announced Amazon Inspector, our security vulnerability assessment service that helps customers test for security vulnerabilities early […]