SilverLining Episode 56: Researching Cloud giants security mechanisms

Episode 56 December 21, 2022 00:23:28
SilverLining Episode 56: Researching Cloud giants security mechanisms
SilverLining IL
SilverLining Episode 56: Researching Cloud giants security mechanisms

Dec 21 2022 | 00:23:28

/

Hosted By

Moshe Ferber Ariel Munafo

Show Notes

Guest: Vladi Sandler, Co-Founder & CEO, Gafnit Amiga, VP of Research, Lightspin

Topic: Researching Cloud giants security mechanisms 

Language: English

 

Abstract

The leading cloud providers these days are storing growing parts of human knowledge and businesses , and therefore their services require to be top notch in security and most of the time, they actually provide very resilient security services. But every now and then, a talented security researcher finds vulnerabilities even on the most mature services - In this episode we spoke with Vladi Sandler & Gafnit Amiga from Lightspin regarding the AWS RDS vulnerability they recently discovered and what is the process of researching cloud provider vulnerabilities and how to do responsible disclosure.  As a bonus, we also discussed the open-source tools released by Lightspin and the way they can help organizations protect their cloud resources.

 

https://blog.lightspin.io/aws-rds-critical-security-vulnerability

https://recon.cloud  -  Free CNAPP tool

https://github.com/lightspin-tech/red-detector - EC2 vulnerability scanner 

https://github.com/lightspin-tech/red-kube - K8S Adversary Emulation

Other Episodes

Episode 30

December 08, 2020 00:29:55
Episode Cover

Episode 30:  The challenges of CISO in a security company

Attendees Guest: Eitan Satmary Guest Title: CISO  Company: Tufin Abstract Being a CISO is challenging, being a CISO at a security vendor is even...

Listen

Episode 19

August 02, 2020 00:40:22
Episode Cover

Episode 19: Understanding Cloud Attack Vectors

Attendees Guest: Or Kamara Guest Title:  Senior team lead  Company:  Synk Abstract Cloud computing can bring interesting and new attack vectors. In this episode,...

Listen

Episode 1

November 04, 2018 00:37:41
Episode Cover

Episode 1: Security Challenges With The Growing World Of Serverless Functions

Attendees Guest: Ory Segal, Puresec Guest title:  CTO & Co-Founder at PureSec Company:  Puresec is the global leader in serverless architectures security.   Serverless functions...

Listen