TrustOnCloud @trustoncloud - Twitter Profile

28 days ago

𝗣𝗿𝗼𝗱𝘂𝗰𝘁 𝘂𝗽𝗱𝗮𝘁𝗲: Data flow diagrams are now interactive. Across 𝗲𝘃𝗲𝗿𝘆 cloud service we cover. Here’s what’s new: → 𝗛𝗼𝘃𝗲𝗿 any component to surface its threats → 𝗣𝗶𝗻 the popup to keep it visible while you explore → 𝗖𝗹𝗶𝗰𝗸 through to the full threat detail For our customers, log in and try it across every service you’re covered for. Try it with the Amazon S3 model: https://t.co/5ZEs4bfecO. #ProductUpdate #DataFlowDiagrams #CloudSecurity #AWS #S3

0

1

61

TrustOnCloud

@trustoncloud

about 1 month ago

Kudos to Usman at @TrustOnCloud for flagging this and helping AWS ship the fix, and to @Hacker0x01 for a structured disclosure path that actually moves. #CloudSecurity #AWS #CloudTrail #TrustOnCloud #CloudService

0

19

TrustOnCloud

@trustoncloud

about 1 month ago

CloudTrail is where your regulators, your SIEM, and your auditors all look. So when a service starts quietly writing customer details into it, that's a problem.

trustoncloud's tweet photo. CloudTrail is where your regulators, your SIEM, and your auditors all look. So when a service starts quietly writing customer details into it, that's a problem. https://t.co/kXfycdw26j

1

0

61

TrustOnCloud

@trustoncloud

about 1 month ago

Two things worth doing this week: 1️⃣Review where CloudTrail logs are stored and who can read them 2️⃣Spot-check what the services handling your most sensitive data are actually writing to the event record

1

0

16

Who to follow

🇺🇦 Joe Gray aka JOSINT 🇺🇦

@C_3PJoe

Abandoned account. BlueSky: C_3PJoe & Mastodon: JOSINT. Threat Intel; 5x Black Badge; Views: my own; https://t.co/eGtH4P4tzV

Chris Farris (@[email protected])

@jcfarris

Cloud Security nerd @fwdcloudsec Organizer | Warning: Snark ahead | @[email protected]

AWS Security Digest

@AwsSecDigest

📥 Stay Up-to-Date on the latest AWS Security News with our Weekly Digest.

TrustOnCloud

@trustoncloud

about 2 months ago

We made our cloud security research more explorable. Browse our cloud security research for Amazon S3 (also covers AWS S3 glacier), Azure Storage (also Azure blobs, files), BigQuery (BigQuery Data Transfer Service, Analytics Hub). Each service includes: → threat scenarios with data flow diagrams → prioritised controls mapped to 180+ frameworks → continuous updates as cloud providers ship changes View now 👇 https://t.co/7hO8u330ty #cloudsecurity #multicloud #trustoncloud #ai #onboarding

trustoncloud's tweet photo. We made our cloud security research more explorable.

Browse our cloud security research for Amazon S3 (also covers AWS S3 glacier), Azure Storage (also Azure blobs, files), BigQuery (BigQuery Data Transfer Service, Analytics Hub).

Each service includes:
→ threat scenarios with data flow diagrams
→ prioritised controls mapped to 180+ frameworks
→ continuous updates as cloud providers ship changes

View now 👇
https://t.co/7hO8u330ty

#cloudsecurity #multicloud #trustoncloud #ai #onboarding

0

2

1

0

70

TrustOnCloud

@trustoncloud

3 months ago

66% of your cloud controls aren't covered by default Wiz rules. we know because we mapped every single one across AWS S3, Azure Storage, and GCP BigQuery. then we open-sourced 50+ custom rules to close it. used by 4 global systemic banks. free on Github: https://t.co/EJ2SrXFBqn #cloudsecurity #CNAPP #infosec #Cloudcontrols

trustoncloud's tweet photo. 66% of your cloud controls aren't covered by default Wiz rules. we know because we mapped every single one across AWS S3, Azure Storage, and GCP BigQuery.

then we open-sourced 50+ custom rules to close it. used by 4 global systemic banks. free on Github: https://t.co/EJ2SrXFBqn

#cloudsecurity #CNAPP #infosec #Cloudcontrols

0

1

2

80

TrustOnCloud

@trustoncloud

3 months ago

5/ Each package includes: mapping of default Wiz rules → our controls + Rego CCRs for every gap. All open-source. Learn more: https://t.co/VrBoNmVvSs

0

2

0

25

TrustOnCloud

@trustoncloud

3 months ago

1/ We just open-sourced @wiz_io CCR packages for AWS S3, Azure Storage & GCP BigQuery. Default Wiz coverage: ~34% for these services. Here's what's missing and why it matters for regulated enterprises 🧵

trustoncloud's tweet photo. 1/ We just open-sourced @wiz_io CCR packages for AWS S3, Azure Storage & GCP BigQuery.

Default Wiz coverage: ~34% for these services. Here's what's missing and why it matters for regulated enterprises 🧵 https://t.co/7ZqjdZ6WVG

1

2

1

0

71

TrustOnCloud

@trustoncloud

3 months ago

4/ GCP #BigQuery: 3% covered. 34 of 35 controls missing. Most are medium severity: IAM entity access, row-level security, authorized encryption.

1

2

0

36

TrustOnCloud

@trustoncloud

4 months ago

We learned the hard way: RSS isn't reliable for cloud change monitoring. AWS API + pagination + completeness checks = table stakes now. #CloudSecurity #AWS #DevSecOps #ThreatIntelligence

trustoncloud's tweet photo. We learned the hard way: RSS isn't reliable for cloud change monitoring. AWS API + pagination + completeness checks = table stakes now.
#CloudSecurity #AWS #DevSecOps #ThreatIntelligence https://t.co/izbUukNg6A

0

1

0

21

TrustOnCloud

@trustoncloud

4 months ago

🚨 Using AWS "What's New" #RSS feed for cloud monitoring? You might be missing critical updates. A few years back, our dashboards stayed green while we went blind to changes. Here's what happened 🧵

trustoncloud's tweet photo. 🚨 Using AWS "What's New" #RSS feed for cloud monitoring? You might be missing critical updates.
A few years back, our dashboards stayed green while we went blind to changes. Here's what happened 🧵 https://t.co/VkYnP5IPJw

1

0

34

TrustOnCloud

@trustoncloud

4 months ago

Before the next re:Invent: ✅ Pull daily during burst weeks ✅ Use the API, not just RSS ✅ Add completeness checks: make "missing updates" an alert, not an accident (4/5)

1

0

17

TrustOnCloud

@trustoncloud

Who to follow

Last Seen Users on Sotwe

Trends for you

Most Popular Users