Full newsletter with links ⇒ CloudSecurityAlliance.fr/go/K7C/
________________________________________
- Blog: FTC Guidance - Six Steps Toward More Secure Cloud Computing
- Blog: Cryptocurrencies, Digital assets, Tokens and Blockchain maturity is coming soon
- Publication: The Six Pillars of DevSecOps: Automation
- 'CSA CloudCon 2020' Agenda
- Blog: Night of the Living Cloud (aka CSA Federal Summit) (1/2)
- Peer Review: 'Key Management when using Cloud Services' document
- Alerts
- AWS-2020-002: Container Networking Security Issue (CVE-2020-8558)
- Attacks
- APT aim at Office 365, Zoom-based, and OAuth-based phishing
- Court Order to Prevent Further O365 Attacks
- Outdated Cloud DNS records
- Reports and Surveys
- "The State Of Cloud Security 2020" (Sophos)
- "2020 UK Veritas Databerg Report"
- "2020 State of SecOps and Automation Report" (Sumo Logic)
- Acquisitions
- Miscellaneous
- Additional Cloud and Security Weekly Watch: 'TL;DR Security' and 'The Cloud Security Reading List
- Workloads Security Strategies: Intezer and Checkpoint
- AWS: Architecture, Reduce Cloud Security Misconfigurations with AWS, Common Errors and Mitigation, AWS Secrets Manager usage, and Core Security Essentails
- Azure: use Cases for ATP, and for Sentinel, Governance
- GCP: Chinese Isolated Region Initiative stopped
- Kubernetes: Best practices for alerting
- Tools: FRETA (Linux forensics), Permission Manager for Kubernetes
- July 2020
- 15th → 'CSA Federal Summit 2020' : "Update on FedRAMP"
- 22nd → 'CSA Federal Summit 2020' : "The Resurgence of Cloud"
- 29th → 'CSA Federal Summit 2020' : "Security Automation Simplified with Open Security Controls Assessment Language"
- Deadlines for the CSA call for comments in July
- 13th → "Enterprise Architecture Working Group Charter"
- 17th → "Critical Controls Implementation for SAP, Part 2"
- 19th → "Top Threats to Cloud Computing: Egregious Eleven Deep Dive"
- 19th → "Earning Trust in the 21st Century"
- 28th → "Cloud OS Security Specification v2.0"
- August 2020
- 19th / 20th → 'CSA CloudCon 2020' • Grand Rapids, Michigan
- 31st → Deadline for the CSA call for proposal for the CSA EMEA 2020 Congress
- 31st and next → CCSK / CCSK Plus training in French
- Deadline for the CSA call for comments in August
- 9th → "Key Management when using Cloud Services"
________________________________________
________________________________________
#Watch #Newsletter________________________________________
------------------------------
Olivier Caleff - CSA French Chapter - Chapter Leader -
[email protected] -
https://CloudSecurityAlliance.fr------------------------------