<ciso brief/>
Tag Banner

All news with #sandbox escape tag

all tags →

Mon, August 11, 2025

Malware Analysis on AWS: Building Secure Isolated Sandboxes

#AWS #AWS EC2 #AWS IAM #AWS KMS #AWS S3 #Encryption at Rest #Encryption in Transit #Least Privilege #Sandbox Escape #VM Escape

🔒 This AWS blog explains how security teams can run malware analysis in the cloud while complying with AWS policies and minimizing risk. It recommends an architecture that uses an isolated VPC with no internet egress, ephemeral EC2 detonation hosts accessed via AWS Systems Manager Session Manager, and secure S3 storage via VPC gateway endpoints with encryption. The post emphasizes strong IAM and SCP guardrails, immutable hosts, automated teardown, centralized logging, and monitoring with CloudTrail and GuardDuty to maintain visibility and lifecycle control.

read more →