InfoQ

Incorrect IAM Policy Raised Questions about AWS Access to S3 Data

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
Virtualization Review

Creating AWS IAM Policies the Easy Way

The AWS cloud's interface for creating IAM policies has always left a little bit to be desired. Although the interface works, it's a little bit messy and I have heard more than one person say that it ...
CSOonline

What are Amazon Zelkova and Tiros? AWS looks to reduce S3 configuration errors

To help reduce the chance of AWS S3 configuration errors, Amazon is working on two new tools – Zelkova and Tiros – to provide greater clarity around who has access to your data and resources and what ...

AWS Security: Protecting Data and Workloads in the Cloud

Cloud security is now a key component of business strategy, as multi-cloud and hybrid infrastructures have become the norm.
CSOonline

ECScape: New AWS ECS flaw lets containers hijack IAM roles without breaking out

Naor Haziz’s discovery shows how a compromised container on EC2-backed ECS tasks can impersonate the ECS agent and steal IAM credentials from other tasks—without host access. At Black Hat USA 2025, ...
TechNewsWorld

Threat of Ransomware Lurks in Amazon S3 Buckets

New research from cloud security firm Ermetic shows that nearly all businesses have identities that, if compromised, would place at least 90 percent of the S3 buckets in their AWS account at risk.