Grzegorz Cichocki2d ago
Want to monitor only AWS Lambdas in Zabbix? Remember to add `ec2:DescribeRegions` action to your access policy🤐
For some reason
#zabbix #aws #lambda #awslambda #awsiam
Josh LeeSep 15, 2025
IAM is one of the most important things to know about when it comes to cloud security. You need to know this stuff. And this articles shows you exactly what you need to know.
#aws #IAM #AWSIAM #cybersecurity #cloud #Cloudcomputing
https://medium.com/@heyjoshlee/aws-iam-tutorial-for-beginners-easy-steps-to-manage-access-46063d44ba83
AWS IAM Tutorial for Beginners: Easy Steps to Manage Access

Managing access to your AWS resources can feel like a maze at first. But once you get the hang of AWS Identity and Access Management (IAM)…

Medium
Ismail KovvuruAug 4, 2025
Facing Email Threats in 2025?
DevOps teams, especially in AWS environments, are primary targets of AI-powered phishing & BEC attacks.
This security-first guide helps you stay ahead.
🧠 Tactics, tools, IAM tips & mitigation.
Read here ➜ https://medium.com/@ismailkovvuru/email-threats-in-2025-security-guide-for-aws-devops-teams-aaa04b8e1647
#DevSecOps #EmailSecurity #AWSIAM #CyberThreats #Phishing2025 #Security #devops #CloudSecurity
Email Threats in 2025: Security Guide for AWS & DevOps Teams

Stop AI phishing in 2025. Learn to detect fake emails, secure AWS & Gmail, and protect DevOps pipelines with our expert guide & security checklist. In 2025, email phishing threats have evolved with…

Medium
agniveshApr 24, 2025

IAM Role Trust Policies: Misconfigurations Hiding in Plain Sight
https://www.token.security/blog/iam-role-trust-policies-misconfigurations-hiding-in-plain-sight

#cloudsecurity #aws #awsiam #identitysecurity

IAM Role Trust Policies: Misconfigurations Hiding in Plain Sight

Even small misconfigurations in role trust policies can unintentionally create critical privilege escalation risks in AWS, such as allowing low-privileged users to assume admin roles.

Maksim AniskovFeb 26, 2025
Four ways to grant cross-account access in AWS
https://aws.amazon.com/blogs/security/four-ways-to-grant-cross-account-access-in-aws/
• Method 1: Grant access to a specific IAM role using the Principal element of the resource-based policy
• Method 2: Grant access to an account using the Principal element of the resource-based policy
• Method 3: Grant access to a specific IAM role using the aws:PrincipalArn condition
• Method 4: Grant access to an entire AWS Organizations organization
#AWS #AwsIam
Four ways to grant cross-account access in AWS | Amazon Web Services

As your Amazon Web Services (AWS) environment grows, you might develop a need to grant cross-account access to resources. This could be for various reasons, such as enabling centralized operations across multiple AWS accounts, sharing resources across teams or projects within your organization, or integrating with third-party services. However, granting cross-account access requires careful consideration […]

Amazon Web Services
setevoyAug 24, 2024

Quite often for a new project that is just building its infrastructure and CI/CD to do so as an MVP/PoC, and at the beginning, no time is spent on tuning AWS IAM Roles and IAM Policies, but simply connecting AdministratorAccess.
Actually, this is exactly what happened in my project, but we are growing, and it’s time to put things in order in […]

https://rtfm.co.ua/en/aws-iam-access-analyzer-policy-generation-create-an-iam-policy/

AWS: IAM Access Analyzer policy generation – create an IAM Policy

Using AWS IAM Access Analyzer policy generation for fine-grained IAM Policy creation

RTFM: Linux, DevOps, and system administration | DevOps-engineering, and system administration. Cases from practice.
setevoyAug 24, 2024

So, we have an AWS Elastic Kubernetes Service cluster with Authentication mode EKS API and ConfigMap, which we enabled during upgrade of the EKS Terraform module from version 19.21 to 20.0.
Before switching EKS Authentication mode completely to the API, we need to transfer all users and roles to Access Entries of the EKS cluster from aws-auth […]

https://rtfm.co.ua/en/terraform-managing-eks-access-entries-and-eks-pod-identities/

Terraform: managing EKS Access Entries and EKS Pod Identities

An example of creating a Terraform project to manage access to AWS EKS with Authentication Mode API and EKS Pod Identities for Kubernetes ServiceAccounts

RTFM: Linux, DevOps, and system administration | DevOps-engineering, and system administration. Cases from practice.
setevoyJul 24, 2024

Доволі частий кейс, коли на новому проекті, який тільки створює свою інфраструктуру і CI/CD, робиться це як MVP/PoC, і на початку на тюнінг AWS IAM Roles та IAM Policies час не витрачається, а просто підключається […]

https://rtfm.co.ua/aws-iam-access-analyzer-policy-generation-stvorennya-iam-policy/

AWS: IAM Access Analyzer policy generation – створення IAM Policy

Використання AWS IAM Access Analyzer policy generation для створення fine grained IAM Policy

RTFM: Linux, DevOps та системне адміністрування | DevOps-інжиніринг та системне адміністрування. Випадки з практики.
setevoyJul 15, 2024

Отже, маємо кластер AWS Elastic Kubernetes Service з Authentication mode EKS API and ConfigMap, який ми включили під час апгрейду Terraform-модуля з версії 19.21 на 20.0.
Перед тим, як переключати EKS Authentication mode повністю на API – нам потрібно з […]

https://rtfm.co.ua/terraform-menedzhment-eks-access-entries-ta-eks-pod-identities/

Terraform: менеджмент EKS Access Entries та EKS Pod Identities

Приклад створення Terraform проекту для управління доступами до AWS EKS з Authentification Mode API та EKS Pod Identities для Kubernetes ServiceAccounts

RTFM: Linux, DevOps та системне адміністрування | DevOps-інжиніринг та системне адміністрування. Випадки з практики.
setevoyJul 13, 2024

It seems like a common task to update a version of a Terraform module, but terraform-aws-modules/eks version 20.0 had some pretty big changes with breaking changes.
The changes relate to authentication and authorization in AWS IAM and AWS EKS, which I analyzed in the post AWS: Kubernetes and Access Management API, the new authentication in […]

https://rtfm.co.ua/en/terraform-eks-and-karpenter-upgrade-the-module-version-from-19-21-to-20-0/

Terraform: EKS and Karpenter – upgrade the module version from 19.21 to 20.0

Step-by-step process of the Terraform terraform-aws-modules/eks upgrade from 19.21.0 to 20.0.0 for EKS and Karpenter: main changes and possible errors

RTFM: Linux, DevOps, and system administration | DevOps-engineering, and system administration. Cases from practice.