It's not just S3 buckets that are exposed. Duo's security research team found a number of other publicly available Amazon Web Services (AWS) resources, including cloud backup and misconfigured servers.
We analyzed the security of several third-party AWS S3 tools to find out why so many S3 buckets with sensitive information have been made public, seemingly unintentionally. Here's what we found.
In February, Duo released CloudMapper, an AWS environment visualization tool, to the developer community. In this blog post, we explore several potential misconfigurations that can lead to security problems.
Introducing: CloudTracker, an AWS CloudTrail Log Analyzer Engineering / Featured Article
Today we are pleased to announce a new open-source tool from Duo Security for easily analyzing CloudTrail logs from Amazon Web Services (AWS)!
StreamAlert is an open-source, real-time data analysis framework developed by Airbnb running on Amazon Web Services (AWS) - here's some lessons learned on working with Kinesis Streams and Lambda.
Today we are pleased to announce a new open-source tool from Duo Security for visualizing Amazon Web Services (AWS) cloud environments!
Duo’s Production Engineering team provides an overview of documentation gaps in AWS's suggested policies for enforcing multi-factor authentication - here's how to mitigate these gaps to help safeguard your users.