All news with #least privilege tag

Thu, August 14, 2025

Falcon Next-Gen Identity Security Unifies Protection

#Agentic AI #CrowdStrike #IAM #Identity Posture #Identity Threat Detection #Just-in-Time Access #Least Privilege #PAM #Product Release

🔒 CrowdStrike announced Falcon Next-Gen Identity Security, a unified solution to protect human, non-human, and AI agent identities across on-premises, cloud, and SaaS environments. It consolidates initial access prevention, modern secure privileged access, identity threat detection and response (ITDR), SaaS identity security, and agentic identity protection into a single sensor and management console. Delivered via the AI-native Falcon platform, the offering provides real-time visibility, dynamic access enforcement, and autonomous response to reduce identity-driven breaches and simplify hybrid identity security.

Mon, August 11, 2025

Malware Analysis on AWS: Building Secure Isolated Sandboxes

#AWS #AWS EC2 #AWS IAM #AWS KMS #AWS S3 #Encryption at Rest #Encryption in Transit #Least Privilege #Sandbox Escape #VM Escape

🔒 This AWS blog explains how security teams can run malware analysis in the cloud while complying with AWS policies and minimizing risk. It recommends an architecture that uses an isolated VPC with no internet egress, ephemeral EC2 detonation hosts accessed via AWS Systems Manager Session Manager, and secure S3 storage via VPC gateway endpoints with encryption. The post emphasizes strong IAM and SCP guardrails, immutable hosts, automated teardown, centralized logging, and monitoring with CloudTrail and GuardDuty to maintain visibility and lifecycle control.

Thu, July 31, 2025

Implementing Defense-in-Depth for AWS CodeBuild Pipelines

#AWS #AWS IAM #AWS Secrets Manager #CI/CD Security #GitHub #Least Privilege #Security Bulletin #Supply-Chain Incident #Token Leakage

🔒 This guide consolidates practical recommendations for securing AWS CodeBuild CI/CD pipelines, emphasizing webhook configuration, trust boundaries, and least-privilege access. It warns against automatic pull request builds from untrusted contributors and prescribes push-based, branch-based, and contributor-filtered webhook patterns, plus staged rollout using Infrastructure as Code. Additional safeguards include scoped GitHub tokens, per-build IAM roles, isolated build environments, CloudTrail logging, and manual approval gates for sensitive deployments.

Wed, August 24, 2022

Twitter Whistleblower Alleges Major Security Failures

#Data Retention #Disclosure #Encryption at Rest #Least Privilege #PAM #PII #Regulatory Action #Threat Report

🔍 An 84-page whistleblower complaint from former Twitter head of security Peiter “Mudge” Zatko alleges systemic security and privacy failings at the company, including excessive staff access, unpatched servers, and potential foreign-agent infiltration. Zatko says these issues violate a 2010 FTC order and pose a national security risk. Twitter calls him a disgruntled ex-employee and says many issues are addressed. Congressional inquiries have already begun.