Scott Piper

@[email protected]
1.4K Followers
80 Following
123 Posts
Cloud security historian.
Developed http://flaws.cloud, CloudMapper, and Parliament.
Founding team for @fwdcloudsec.
Admin for Cloud Security Forum Slack.
Threat researcher at https://www.wiz.io/
https://twitter.com/0xdabbad00
Scott PiperFeb 8, 2024
fwd:cloudsecFeb 8, 2024
Reminder: fwd:cloudsec Europe will take place on the 17th of September 2024 in Brussels. Interested in sponsoring? We have a few sponsorship slots left, let us know at [email protected]! The call for sponsors closes on February 23. https://fwdcloudsec.org/conference/europe/
CFP | NA 2024 | fwd:cloudsec

fwd:cloudsec is a non-profit conference on cloud security. At this conference you can expect discussions about all the major cloud platforms, both attack and defense research, limitations of security features, the pros and cons of different security strategies, and generally the types of things cloud practitioners want to know, but that don't fit neatly into a vendor conference schedule.

Scott PiperFeb 2, 2024
phrack has released a CFP and is interested in cloud security (among other things). http://phrack.org/
.:: Phrack Magazine ::.

Phrack staff website.

Scott PiperJan 17, 2024
Corey QuinnJan 17, 2024

Your @AWScloud EKS cluster control planes are about to be 6x more expensive if you don't keep them updated to current.

I think this is genius; if you don't patch your infrastructure, you're inflicting externalities on the rest of us. It's time you bore some of that cost.

Scott PiperJan 16, 2024

In case you missed it, there will be two fwd:cloudsec's this year!
- NA (North America): In Arlington, VA in June
- EU: In Brussels, Belgium in September

Also we recently announced tickets and CFP will open for fwd:cloudsec NA next week on Jan 22.

https://infosec.exchange/@fwdcloudsec/111758438857986636

https://infosec.exchange/@fwdcloudsec/111743843575450692

fwd:cloudsec (@[email protected])

We’re excited to announce the European version of the conference: fwd:cloudsec Europe! It will take place on the 17th of September 2024 in Brussels, Belgium. CFP and registration will open in Spring, stay tuned! fwd:cloudsec Europe follows the exact same vision as fwd:cloudsec: a vendor-neutral, practitioner-focused cloud security conference. It’s brought to Europe by a group of locals: @[email protected], @christophetd, @[email protected], @[email protected], and Sochima, along with Aaron and @jcfarris. This crossing of the Atlantic wouldn’t be possible without the support of sponsors. Interested in sponsoring the event? Spots are limited, let us know at [email protected]! Thank you to the fwd:cloudsec board and organizers @[email protected], @[email protected], @patricksanders, Shinesa, Jerin, and Joel for their continued support! https://fwdcloudsec.org/conference/europe/

Infosec Exchange
Scott PiperJan 16, 2024
fwd:cloudsecJan 15, 2024

We’re excited to announce the European version of the conference: fwd:cloudsec Europe! It will take place on the 17th of September 2024 in Brussels, Belgium. CFP and registration will open in Spring, stay tuned!

fwd:cloudsec Europe follows the exact same vision as fwd:cloudsec: a vendor-neutral, practitioner-focused cloud security conference. It’s brought to Europe by a group of locals: @benbridts, @christophetd, @karimscloud, @nojonesuk, and Sochima, along with Aaron and @jcfarris.

This crossing of the Atlantic wouldn’t be possible without the support of sponsors. Interested in sponsoring the event? Spots are limited, let us know at [email protected]!

Thank you to the fwd:cloudsec board and organizers @0xdabbad00, @hhopk, @patricksanders, Shinesa, Jerin, and Joel for their continued support!

https://fwdcloudsec.org/conference/europe/

CFP | NA 2024 | fwd:cloudsec

fwd:cloudsec is a non-profit conference on cloud security. At this conference you can expect discussions about all the major cloud platforms, both attack and defense research, limitations of security features, the pros and cons of different security strategies, and generally the types of things cloud practitioners want to know, but that don't fit neatly into a vendor conference schedule.

Scott PiperDec 17, 2023
Unfixed Google Oauth Vulnerability that allows you to keep access to applications after you've been off-boarded from your Google organization. Great video in this post with explanation and back-story. https://trufflesecurity.com/blog/google-oauth-is-broken-sort-of/
Google OAuth is broken (sort of) - Truffle Security

A Google Oauth vulnerability that allows employees to maintain access to services after they're offboarded.

Truffle Security
Scott PiperNov 3, 2023
New CTF style challenge from Wiz to learn Kubernetes security. eksclustergames.com
Scott PiperOct 30, 2023
fwd:cloudsecOct 30, 2023

We've lined up a venue for fwd:cloudsec 2024! Mark your calendars for June 17-18 in Arlington, VA. Ticket sales and CFP will open in early January.

For those interested in sponsoring, we'll have a prospectus in the next few weeks. Contact: [email protected]

Scott PiperMay 11, 2023
fwd:cloudsecMay 11, 2023

Mark your calendars! Final batch of tickets go on sale next Monday, May 15th at 9AM PT 🎟️🎟️

Full schedule will be published on Monday evening. This year's conference is shaping up to be our best one yet!

https://www.eventbrite.com/e/fwdcloudsec-2023-tickets-556255303587

fwd:cloudsec 2023

fwd:cloudsec is the industry's leading independent, community-driven cloud security conference. All times listed are in US/Pacific time.

Eventbrite
Scott PiperApr 26, 2023
fwd:cloudsecApr 25, 2023

Get your last minute submissions in now! T-3 days until CFP closes!

Got last minute questions? Join us for our final office hours at 10AM PT this Friday: https://tinyurl.com/fwcs-oh-28