How our AWS account got hacked and what we did to ensure it never happened again.
11
Continuous Assurance
-
Upload
darrell-king -
Category
Data & Analytics
-
view
227 -
download
0
Transcript of How our AWS account got hacked and what we did to ensure it never happened again.
Continuous Assurance
A Typical AWS journey
Best practice is new and complex
With great power comes great responsibility
1: Respect the privacy of others.2: Think before you type.
3: With great power comes great responsibility.
[sudo] login
Shared Responsibility!
Typical monthly AWS bill
Spiraling Cost
Monthly AWS bill after compromise
NAT not designed for failure
Figure 1a: Internet-bound traffic through a NAT instance
Figure 1b: Internet-bound traffic interrupted during NAT
failure
NAT designed for failure
Virtual Private Cloud
SSL certificate
The site’s security certificate has expired!
What we built to solve this! – Cloud Conformity Demo
Register your interest at
cloudconformity.com
Beta finishes September
1st
WIN anAmazon
Echo
Continuous Assurance
