June 9, 2021 bestdevops AWS Leave a comment

TeamTNT attacks IAM credentials of AWS and Google Cloud

Source:-https://www.scmagazine.com/ Researchers reported Friday that TeamTNT is using compromised AWS credentials to attack AWS cloud environments via the cloud platform’s application programming interface. The threat actors are now also targeting the credentials of 16 additional applications, including the AWS apps as well as Google Cloud credentials. The researchers said the threat actors can now identify all identity and access management (IAM) permissions, elastic computer cloud instances, S3 buckets, CloudTrail configurations, and CloudFormation operations granted to the compromised AWS credentials. This

May 29, 2021 bestdevops Continuous Integration Leave a comment

Announcing the New Open Source Project Yor, Dynamic and Automated Cloud Infrastructure Tagging

Source:-https://www.prnewswire.com/ SANTA CLARA, Calif., May 27, 2021 /PRNewswire/ — Palo Alto Networks (NYSE: PANW), the global cybersecurity leader, today announced the release of Yor, an open-source tool that automatically tags cloud resources within infrastructure as code (IaC) frameworks Terraform, AWS CloudFormation, and Serverless Framework YAML. Yor automates the tedious work of manually tagging cloud resources, helps security teams trace security misconfigurations from code to cloud, and enables highly effective GitOps across all major cloud providers. “Effective infrastructure tagging is critical

January 5, 2021 bestdevops Continuous Integration Leave a comment

A Modern Shift-Left Security Approach

Source:-https://www.forbes.com The concept of shifting security left is not new, but historically this has meant little more than inserting security processes in the middle of development and slowing everything down. In this article, I’ll describe older shift-left methods that have not worked — and how a modern approach to shifting left can have a high impact on risk reduction and create a healthy balance of freedom and responsibility for cloud-native development teams. I believe CISOs have no choice but to

December 22, 2020 bestdevops AWS Leave a comment

Fortinet collaborates with AWS to deliver integrated next-generation firewall

Source:-https://www.dqindia.com Fortinet announced new integrations with Amazon Web Services (AWS) to further provide customers with advanced security across their cloud platforms, applications, and network. Fortinet’s cloud security solutions – including its virtual next-generation firewall, FortiGate-VM and web application firewall (WAF), FortiWeb – are designed to protect workloads and business applications across on-premises data centers and cloud environments. Fortinet is continuing to provide a broad set of natively integrated security solutions using AWS to provide customers with full visibility and control

January 13, 2020 bestdevops AWS Leave a comment

What is AWS CloudFormation?

Source:-techradar.com The sinews and muscles that make cloud computing function are just as important as the web and mobile applications that run on top of it. While many companies are focused on the features available in the apps, increasing user adoption of an app, or focusing on revenue generated from a service that runs on the web, there is also the underlying infrastructure that makes those app work reliably and at a high-performance level. For the most part, a cloud

October 1, 2019 bestdevops AWS Leave a comment

Tailor and create compliance rules with this AWS Config tutorial

Source:-searchaws.techtarget.com Get started with this guide to AWS Config rules. Learn how to customize AWS Config managed rules with CloudFormation and create new rules with AWS Lambda. There’s more to AWS Config than just out-of-box rules. Most organizations have specific compliance needs and must tailor their cloud compliance rules to meet those challenges — demands that AWS Config can accommodate. In this AWS Config tutorial, we’ll walk through the different ways to customize Config rules. The first approach is to

September 26, 2019 bestdevops AWS Leave a comment

Set up continuous compliance on AWS with Config managed rules

Source:-searchaws.techtarget.com It’s difficult to meet cloud compliance demands with manual practices. Establish a continuous compliance posture with AWS Config managed rules and best practices.Manual compliance practices can’t keep up with the speed and scale of the cloud, which is why admins need a combination of automation and orchestration to solidify their compliance posture on AWS. AWS Config enables users to implement a continuous compliance cloud environment with preconfigured rules that set and monitor desired configuration settings. With AWS Config best practices in

September 25, 2019 bestdevops AWS Leave a comment

When to use AWS OpsWorks vs. CloudFormation or Elastic Beanstalk

Source:-searchaws.techtarget.com There are multiple ways to define and deploy resources on AWS. Break down when to use the different AWS configuration management tools and how they integrate together. IT teams can programmatically deploy and dispose of entire application stacks on AWS — and they have multiple ways to do so. That range of options on AWS can make it difficult to choose the best configuration management tools or practices. Let’s compare a trio of Amazon cloud services — AWS OpsWorks

August 1, 2019 bestdevops AWS Leave a comment

AWS CloudFormation public roadmap released after user gripes

Source:techtarget.com AWS CloudFormation users now have a public roadmap, which should help them plan use of the infrastructure-as-code tool. But AWS hasn’t promised faster CloudFormation development. AWS has delivered on a pledge of greater transparency into its development plans with the release of a public roadmap for CloudFormation, the highly popular infrastructure-as-code framework that some users complain doesn’t keep close enough pace with AWS service releases. AWS CloudFormation usage has grown at a rapid pace, but AWS has given scalability

June 30, 2017 bestdevops Cloud Computing, DevOps Leave a comment

DevOps shops weather growing pains with infrastructure-as-code tools

Source – searchitoperations.techtarget.com IT operations pros increasingly rely on infrastructure-as-code tools to keep up with DevOps, but these tools have advanced almost as quickly as the new apps sys admins have to support. Established infrastructure-as-code companies Chef and Puppet have recently remodeled their tools to support containers and their underlying infrastructure. Chef overhauled its codebase into three major open source projects last year, and users are still trying to understand its Habitat product. Puppet introduced its own roadmap last quarter to bolster its container