Lior Zatlavi, Author at Security Boulevard

Terraform Lab: Taking the New VPC Endpoint Condition Keys Out for a Spin

Lior Zatlavi | April 3, 2023 | aws

Our new open source Terraform project offers hands-on experience with VPC endpoints and demos AWS's new condition keys for securing EC2 instances The post Terraform Lab: Taking the New VPC Endpoint Condition Keys Out for a Spin appeared first on Ermetic ... Read More

Ermetic

Creating an OIDC provider for the EKS cluster in the console

Federating Kubernetes Workloads with Cloud Identities

Lior Zatlavi | March 27, 2023 | Cloud

Your K8s workloads legitimately need access to sensitive cloud resources – federated identities let you grant it easily and securely The post Federating Kubernetes Workloads with Cloud Identities appeared first on Ermetic ... Read More

Ermetic

A New Incentive for Using AWS VPC Endpoints

Lior Zatlavi | March 9, 2023 | aws

If you haven’t been using VPC endpoints until now, AWS's two new condition keys should make you consider doing so The post A New Incentive for Using AWS VPC Endpoints appeared first on Ermetic ... Read More

Ermetic

Illustration of an IMDSv1 credentials query

AWS EC2 IMDS – What You Need to Know

Lior Zatlavi | February 27, 2023 | aws

Read this review of IMDS, an important AWS EC2 service component, to understand its two versions and improve your AWS security The post AWS EC2 IMDS – What You Need to Know appeared first on Ermetic ... Read More

Ermetic

Figure 1: Different configurations of VM access to the internet - Source: Azure documentation

A Caveat for Azure VM Public IP Configuration

Lior Zatlavi | January 16, 2023 | azure

If you’re not familiar enough with the SKU attribute of the Azure public IP address you may think you’re configuring virtual machines as public but aren’t. The post A Caveat for Azure VM Public IP Configuration appeared first on Ermetic ... Read More

Ermetic

How to Minimize Unintended Access and Achieve Least Privilege with Ermetic and AWS

Lior Zatlavi | January 11, 2023 | aws

Lior Zatlavi explains how to set up the platform in your environment and get maximum value The post How to Minimize Unintended Access and Achieve Least Privilege with Ermetic and AWS appeared first on Ermetic ... Read More

Ermetic

IAM Role Trust Update – What You Need to Know

Lior Zatlavi | October 19, 2022 | aws

AWS are changing an aspect of how trust policy is evaluated when it comes to assuming roles - here is a quick digest of what this change may mean to you The post IAM Role Trust Update – What You Need to Know appeared first on Ermetic ... Read More

Ermetic

Azure SQL Servers networking blade - Explanation that appears when hovering over the information icon of the “Allow Azure services and resources to access this server” checkbox item

Public Network Access to Azure Resources Is Too Easy to Configure

Lior Zatlavi | October 6, 2022 | azure

For some types of Microsoft Azure resources and subnets, it’s extremely easy to configure what is essentially public network access. We describe here some examples and how to reduce such risks. The post Public Network Access to Azure Resources Is Too Easy to Configure appeared first on Ermetic ... Read More

Ermetic

Five Lessons Every Cybersecurity Team Can Learn from the Uber Incident

Lior Zatlavi | September 22, 2022 | Cloud

Upon hearing of a cyber security incident, alleged or factual, the most productive thing to do is learn what you can from its main lessons The post Five Lessons Every Cybersecurity Team Can Learn from the Uber Incident appeared first on Ermetic ... Read More

Ermetic

Why It’s Important to Take Notice of AWS IAM Roles Anywhere

Lior Zatlavi | August 30, 2022 | aws

IAM Roles Anywhere may be a pivotal moment for security; it lets you enrich the arsenal of tools at your disposal for improving your AWS security posture. The post Why It’s Important to Take Notice of AWS IAM Roles Anywhere appeared first on Ermetic ... Read More

Ermetic

Lior Zatlavi
Ermetic

Terraform Lab: Taking the New VPC Endpoint Condition Keys Out for a Spin

Federating Kubernetes Workloads with Cloud Identities

A New Incentive for Using AWS VPC Endpoints

AWS EC2 IMDS – What You Need to Know

A Caveat for Azure VM Public IP Configuration

How to Minimize Unintended Access and Achieve Least Privilege with Ermetic and AWS

IAM Role Trust Update – What You Need to Know

Public Network Access to Azure Resources Is Too Easy to Configure

Five Lessons Every Cybersecurity Team Can Learn from the Uber Incident

Why It’s Important to Take Notice of AWS IAM Roles Anywhere

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On