Noam Dahan, Author at Security Boulevard
access advisor result

Auditing PassRole: A Problematic Privilege Escalation Permission

| | Blog
TL;DR: iam:PassRole is an AWS permission that enables critical privilege escalation; many supposedly low-privilege identities tend to have it It’s hard to tell which IAM users and roles need the permission We have mapped out a list of AWS actions where it is likely that iam:PassRole is required and the ... Read More
Orion permissions

Cloud infrastructure is not immune from the SolarWinds Orion breach

| | Blog
Until now much of the discussion around the SolarWinds breach that hacked FireEye and compromised US government networks has focused on the on-premise risks. However the cloud infrastructure of the impacted organizations is not necessarily immune. That’s because the SolarWinds Orion platform can also be deployed in cloud environments, where ... Read More