Lightspin Blog - Cloud Security & Kubernetes

Cloud Security
How many of your GCP buckets are publicly accessible? It might be more than you think...
Take a look at Lightspin's examination of GCP's storage service, how to access buckets, and how to make sure your buckets are configured as intended.

— Read more ▸
The Purple Cloud Summit & Lounge Announcement
You are cordially invited to join Lightspin at the Purple Cloud Summit & Lounge at the Contemporary Jewish Museum in San Francisco on June 8th during RSA.

— Read more ▸
Cloud Security
AWS RDS Vulnerability Leads to AWS Internal Service Credentials
Lightspin obtains credentials to an internal AWS service by exploiting a local file read vulnerability on the RDS EC2 instance using the log_fdw extension.

— Read more ▸
Cloud Security

Kubernetes Security
What is your public cloud exposure? See what an attacker sees with Recon.Cloud from Lightspin
With Recon.Cloud, a public and free AWS cloud security reconnaissance tool, users can reveal publicly exposed cloud assets on any domain.

— Read more ▸
Cloud Security
Amazon Redshift - COPY The Risk
Lightspin reveals several ways an attacker could potentially access your sensitive data using Redshift COPY command.

— Read more ▸
Get A Free Year of A Cloud Guru Access: A $420 Value
Lightspin is giving away 25 one-year subscriptions to A Cloud Guru, a $420 value.

— Read more ▸
Cloud Security
Microsoft Defender for Endpoint on AWS: Part 4 – Final Entry
The fourth and final entry of the Microsoft Defender for Endpoint on AWS series by Jonathan Rau, CISO at Lightspin.

— Read more ▸
Cloud Security
Scan Your IaC Templates in CircleCI Pipelines Using Lightspin
Learn all about how to accomplish automated security analysis for your IaC templates using the new Lightspin IaC Orb inside the CircleCI platform.

— Read more ▸
Cloud Security

Kubernetes Security
EKS Authentication: Part 1
Get a closer look at EKS authentication every step of the way, from creating a cluster to using Kubectl to run commands on your cluster.

— Read more ▸
Cloud Security
Why Create an EKS Creation Tool?
This blog offers answers to how the Amazon EKS Creation Engine (ECE) tool was created, use cases for it, and an explanation of some of the code pieces.

— Read more ▸

Dana Tsymberg

Dana Tsymberg

How many of your GCP buckets are publicly accessible? It might be more than you think...

The Purple Cloud Summit & Lounge Announcement

AWS RDS Vulnerability Leads to AWS Internal Service Credentials

What is your public cloud exposure? See what an attacker sees with Recon.Cloud from Lightspin

Amazon Redshift - COPY The Risk

Get A Free Year of A Cloud Guru Access: A $420 Value

Microsoft Defender for Endpoint on AWS: Part 4 – Final Entry

Scan Your IaC Templates in CircleCI Pipelines Using Lightspin

EKS Authentication: Part 1

Why Create an EKS Creation Tool?

Amazon Redshift - COPY The Risk

Why you need to update your risky default EMR managed roles and policies

Achieve a resilient cloud security posture

Lightspin’s latest articles, right in your inbox.

Amazon Redshift - COPY The Risk

Why you need to update your risky default EMR managed roles and policies

Achieve a resilient cloud security posture