- VayFul®
- Posts
- CloudSec Wednesday: Rails Security, Git Config Exposed 15k Cloud Credentials, AWS WAF Rules Against Bots
CloudSec Wednesday: Rails Security, Git Config Exposed 15k Cloud Credentials, AWS WAF Rules Against Bots
Cybersecurity — For Security Professionals
Hey! James here.
Today’s edition covers Cloud Security, Container Security and DevSecOps Practices:
📝 15k Cloud Credentials Stolen in Operation Targeting Exposed Git Config Files, How to mitigate bot traffic by implementing Challenge actions in your AWS WAF custom rules!
🔥I bought us-east-1[.]com: A Look at Security DNS Traffic and Protecting AWS Users, Typosquat Campaign Targeting npm developers!
🧠 The dark side of Github actions, How To Scan The Entire Cloud, The state of security in Rails 8!
And more…
First time reading? Sign up here.
📰 Top Security News
📝 Best Of Blogs
🧠 Learning Resources
The dark side of github actions (Adnan Khan)
How To Scan The Entire Cloud (Ben Sadeghipour)
The state of security in Rails 8 (Greg Molnar)
🛠️ Tools
⚡️ Misc
🎯 Favorite Quote
“Success usually comes to those who are too busy to be looking for it.”
- Henry David Thoreau
💡 ABOUT VAYFUL®
Vayful® is a cybersecurity newsletter that curates the best cybersecurity news, research, tools, blogs, talks, tutorials, and learning resources — specially handpicked for security professionals. The content is curated with love by security professionals.
Enjoyed this newsletter? Friends don’t keep good things to themselves - forward this to your friends and have them sign up here!
Did someone forward this email to you? Become a subscriber!
Have feedback or questions? Just hit reply and let us know.