AWS Security Best Practices: AWS Lambda Security – Design for Failure

For security experts, the terms “Remote Code Execution” (RCE) or “Arbitrary Code Execution” makes the hairs on the back of their neck stand on end. This is because RCE is among the worst-case scenarios of a cyber attack – a… Continue reading AWS Security Best Practices: AWS Lambda Security – Design for Failure

The Serverless Show: Make it Someone Else’s Problem

Watch the video below or listen to the audio on SoundCloud. For this episode, Hillel and Tal from […]
The post The Serverless Show: Make it Someone Else’s Problem appeared first on Protego.
The post The Serverless Show: Make it Someone Else… Continue reading The Serverless Show: Make it Someone Else’s Problem

A Deep Dive into Serverless Attacks, SLS-1: Event Injection

The OWASP Serverless top 10 project was just launched. It aims at educating practitioners and organizations about the […]
The post A Deep Dive into Serverless Attacks, SLS-1: Event Injection appeared first on Protego.
The post A Deep Dive into Se… Continue reading A Deep Dive into Serverless Attacks, SLS-1: Event Injection

Talking Serverless And AWS Lambda Security With Jeff Forristal

Introduction
In my previous blog interview with Jeremiah Grossman, I mentioned that throughout the years, I befriended a small group of people, with which every discussion is always intriguing, challenging and truly inspiring. Jeff Forristal … Continue reading Talking Serverless And AWS Lambda Security With Jeff Forristal

If It Happened To Facebook…

Earlier today, Facebook released a blog post regarding a recent discovered vulnerability in their platform, which apparently got exploited by attackers. Here’s an excerpt from the Facebook blog:
The post If It Happened To Facebook… appe… Continue reading If It Happened To Facebook…

Talking Serverless Security With Jeremiah Grossman

I always enjoy talking about application security, whenever I have the chance, and with pretty much anyone. Having said that, throughout the years, I was fortunate enough to befriend a small group of people with which every discussion is always in… Continue reading Talking Serverless Security With Jeremiah Grossman

Musings on Serverless and Application Security With Simon Wardley

While traveling home from ServerlessConf in San Francisco, I bumped into Simon Wardley and we engaged in an hour long discussion on serverless application security. I found the discussion extremely intriguing and thought it would be great to recor… Continue reading Musings on Serverless and Application Security With Simon Wardley