IAM Role Trust Update – What You Need to Know
When it comes to assuming roles, AWS is changing an aspect of how trust policy is evaluated; here is a…
By Lior Zatlavi 
Public Network Access to Azure Resources Is Too Easy to Configure
For some types of Microsoft Azure resources and subnets, it’s extremely easy to configure what is essentially public network access.…
By Lior Zatlavi Latest
Sealing Off Your Cloud’s Blast Radius
Understand the challenges of securing your cloud and key best practices for minimizing your cloud’s blast radius
By Ermetic Team 
6 Tips for Understanding 3rd-Party Risk in the Cloud
It’s critical to understand the security risk that third parties pose to your cloud infrastructure and how managing 3rd-party access…
By Ermetic Team 
How to Improve Your Incident Response in the Cloud
A look at the security best practices and mindset to adopt to better detect and recover from malicious activity in…
By Ermetic Team 
Cloud
See all
What You Should Know about the New OpenSSL Vulnerability
How to detect which OpenSSL version you’re running and if your organization is exposed to the critical OpenSSL vulnerabilities -…
By Ari Eitan 
Verizon’s 2022 Data Breach Report – Insights for Cloud Security Professionals
Wondering which cyber attack trends are putting your organization at risk? Learn about the leading threat vectors – and how…
By Ermetic Team 
Five Lessons Every Cybersecurity Team Can Learn from the Uber Incident
Upon hearing of a cyber security incident, alleged or factual, the most productive thing to do is learn what you…
By Lior Zatlavi
AWS
See all
Diving Deeply into IAM Policy Evaluation – Highlights from AWS re:Inforce IAM433
One of the most talked-about sessions at AWS re:Inforce, and my favorite, was IAM433, on AWS IAM’s internal evaluation mechanisms
By Noam Dahan 
Why It’s Important to Take Notice of AWS IAM Roles Anywhere
IAM Roles Anywhere may be a pivotal moment for security — the new service lets you enrich the arsenal of…
By Lior Zatlavi 
3 Ways to Reduce the Risk from Misused AWS IAM User Access Keys
Used incorrectly, AWS IAM User Access Keys can pose high risk; the good news is that great alternatives, explored here,…
By Lior Zatlavi
Azure
See all
Access Keys: An Unintended Backdoor-by-Design to Azure Storage Accounts Data
The importance of understanding the assignments of Azure resource roles when giving permissions.
By Lior Zatlavi 
The ABCs of Azure Identity Governance Tools
The main Azure mechanisms for governing identities and providing access permissions.
By Lior Zatlavi 
Deconstructing Azure Access Management using RBAC
The basics of Azure RBAC — the main mechanism in Azure for granting permissions to resources.
By Lior Zatlavi 
