Update from: 2021–12–23

Official Security bulletin from AWS AWSSupportServiceRolePolicy Informational Update


You will find below details about the security incident that leads to this unattended access for millions of AWS customers.

On , AWS deployed a new version () of used by a mandatory role:

Photo by ThisisEngineering RAEng on Unsplash


My low-volume (once a week) newsletter “AWS Security Digest” is out.

What you will find:

  • Highlight of the week 🔦
  • Change since last week on AWS Managed IAM Policies 👮🏻‍♂️
  • Curated Cloud Security Newsletters 💌
  • AWS API changes 👀
  • IAM Permissions changes 🔒
  • Most upvoted posts on r/AWS 🆙
  • Top shared links on Twitter (by cloudsec practitioners) 🔗
  • Most engaged Tweets from the community 🐦

Adopt a slow-tech 🐌 approach by reading only essential, digest summary of what is going on in the AWS Security landscape.

With already 350+ subscribers with famous folks from @netflix and @amazon, you can’t go wrong :)

Subscribe here 📝 : asd.zoph.io

Victor Grenu

🏴‍☠️ Independent AWS Cloud Architect. Writing about DevSecOps, Automation, and CloudNative Solutions. Hire me on @zoph_io

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store