Dragon Cloud Security Podcast S02E04

December 14, 2021

Intro

Welcome Dear listeners, I’m Viktor your host and as a weekly basis I will share news, articles, techniques, tools that is related to Cloud, SaaS, IaaC security. All the URLs for the news, articles and tools can be found here: https://www.buzzsprout.com/1844597

Articles

Microsoft partners: The Good, The Bad, or The Ugly? – https://o365blog.com/post/partners/

AWS Re:Liability – The Status Page Status – https://dev.to/ryansb/aws-reliability-the-status-page-status-2f5f

New Whitepaper Now Available: The Security Perspective of the AWS Cloud Adoption Framework – https://aws.amazon.com/blogs/security/new-whitepaper-now-available-the-security-perspective-of-the-aws-cloud-adoption-framework/

Snaring the Bad Folks – https://netflixtechblog.com/snaring-the-bad-folks-66726a1f4c80

When does enabling Microsoft Sentinel make sense? – https://practical365.com/when-does-enabling-microsoft-sentinel-make-sense/

Microsoft Vancouver leaking website credentials via overlooked DS_STORE file – https://cybernews.com/security/microsoft-vancouver-leaking-website-credentials-via-overlooked-ds-store-file/

Bridgecrew configuration as code using our new Terraform Provider – https://bridgecrew.io/blog/bridgecrew-configuration-as-code-new-bridgecrew-terraform-provider/

Microsoft and GitHub OAuth Implementation Vulnerabilities Lead to Redirection Attacks – https://www.proofpoint.com/us/blog/cloud-security/microsoft-and-github-oauth-implementation-vulnerabilities-lead-redirection

Jupyter notebook vulns across all the top cloud providers – https://twitter.com/0xdabbad00/status/1467886633252843523

Intune reporting with Log Analytics: list local admin accounts on your devices and who added them – https://www.systanddeploy.com/2021/12/intune-reporting-with-log-analytics.html

USB Over Ethernet | Multiple Vulnerabilities in AWS and Other Major Cloud Services – https://www.sentinelone.com/labs/usb-over-ethernet-multiple-privilege-escalation-vulnerabilities-in-aws-and-other-major-cloud-services/

Hunting For Anomalies With Time-Series Analysis – https://m365internals.com/2021/02/16/hunting-for-anomalies-with-time-series/

awesome-kubernetes-security – https://github.com/ksoclabs/awesome-kubernetes-security

Tools

Kusto hunt-log4j – https://github.com/eshlomo1/Azure-Sentinel-4-SecOps/blob/master/Hunting/CVE-2021-44228-Logshell/hunt-log4j-mde.kusto

Whoc – https://github.com/twistlock/whoc

Outro

That’s all for this episode. Thank you for listening and have a secure day!