Claus Cramon HoumannMy haul from #fwdcloudseceu. Not bad! Time to be the sticker fairy at a few other conferences now!
And the final talk at the second ever Fwd:CloudSec:Europe is Lee Livsey with “Hello, whose service account keys are these?”
@ #fwdcloudseceu !
Now digging into what happens when you find and disclose secrets to someone-> Soufian El Yadmani presents “The file that contained the keys has been removed: An analysis of secret leaks in cloud buckets and responsible disclosure outcomes” at #fwdcloudseceu
Note: don’t use “Responsible disclosure” use CVD
And now, after a day with so far one fantastic talk after another here at #fwdcloudseceu , we have the researcher-legend Nick Frichette himself! Presenting on AWS access key honeytokens!
“Sweet deception: Mastering AWS honey tokens to detect and outsmart attackers” cc @Jacob
Next up at #fwdcloudseceu is James Henderson who will be attacking and defending Snowflake data lakes!
Back after the lunch break, first up now is Eliav Livneh with his talk “Source IP spoofing in cloud logs, a hands-on look across AWS, Azure and GCP”
Next up is Liad Eliyahu, who built the AWS security changes project, which this talk is about-> uncovering hidden security changes in AWS
Next up is Nishaanth Guna who managed lateral movement in #Azure Kubernetes Service #AKS “Pods without borders - lateral movement in AKS”
Next up is Jason Kao with “Mistrusted advisor - when AWS tooling leaves public S3 buckets undetected “
