Container Security Issue (CVE-2019-5736)
February 11, 2019 7:00 AM PST
CVE Identifier: CVE-2019-5736
AWS is aware of the recently disclosed security issue which affects several open-source container management systems (CVE-2019-5736). With the exception of the AWS services listed below, no customer action is...
Kubernetes Security Issues (CVE-2018-18264 and kubectl proxy)
January 4, 2019 9:00 AM PST
AWS is aware of the two recent security issues disclosed within Kubernetes regarding the Kubernetes API server ("kubectl proxy"), and the Kubernetes Dashboard (CVE-2018-18264). Amazon Elastic Container Service for Kubernetes (EKS) is not...
Kubernetes Security Issue (CVE-2018-1002105)
2018/12/04 1:00 PM PST
AWS is aware of a recent security issue within Kubernetes, assigned CVE identifier CVE-2018-1002105. Amazon Elastic Container Service for Kubernetes (EKS) manages the Kubernetes control plane on behalf of customers. Any new clusters launched after...
L1 Terminal Fault Speculative Execution Issue
August 14, 2018 11:00 AM PDT
Intel has published a security advisory (INTEL-SA-00161) regarding a new side-channel analysis method concerning their processors called "L1 Terminal Fault" (L1TF). AWS has designed and implemented its infrastructure with protections against these types...
Linux Kernel SegmentSmack Issue
August 6, 2018 1:00 PM PDT
CVE Identifiers: CVE-2018-5390
AWS is aware of a recently-disclosed security issue, commonly referred to as SegmentSmack, which affects the TCP processing subsystem of several popular operating systems including Linux.
AWS services are operating...
Xen Security Advisory 267 (XSA-267)
June 13, 2018 2:00 PM PDT
CVE Identifiers: CVE-2018-3665
A new speculative execution side-channel issue concerning Intel processors was discovered by AWS in collaboration with Cyberus Technology. We reported this issue immediately to Intel, which has been working...
Additional Processor Speculative Execution Research Disclosures
2018/05/21 2:00 PM PDTCVE Identifiers: CVE-2018-3639
Intel has published a security advisory (SA-00115) regarding new variants of speculative execution side-channel issues concerning their processors.
These issues do not impact AWS infrastructure. No customer’s instance can read the memory of...
Xen Security Advisories 260-262 (XSA-260, XSA-261, XSA-262)
2018/05/08 10:00AM PDT
CVE Identifiers: CVE-2018-8897 The Xen Security Team has released Xen Security Advisories 260, 261 and 262 regarding the Xen hypervisor. AWS customers' data and instances are not affected by this issue, and no customer action...
As Businesses Move Critical Data to Cloud, Security Risks Abound
Companies think their data is safer in the public cloud than in on-prem data centers, but the transition is driving security issues.
Best practices for handling gaps in cloud security
Establishing sufficient cloud security is a complex challenge. Learn where your attention is best directed to achieve the best results.
Behold… a WinRAR security bug that’s older than your child’s favorite YouTuber. And yes, you should patch this hole
Bet all two of you who paid to activate your copy are feeling a little cheesed off at this 14-year-old undetected flaw CheckPoint infosec eggheads are today laying claim to discovering a Windows archiving security flaw that appears to...
Can you really sniff out gas station card skimmers with your phone?
A viral post suggests (wrongly) that card skimmers always use Bluetooth. Anyway, just looking at nearby Bluetooth names doesn't help much...
Canada Helping Australia Determine ‘Full Extent’ of Hack
Canada's electronic eavesdropping agency said Wednesday it is working with Canberra to try to determine the scale of computer hacking on Australia's parliament and political parties just months from an election.
read more
