AWS have released or changed managed IAM policies in unexpected and insecure ways.
Examples include: CheesepuffsServiceRolePolicy, AWSServiceRoleForThorInternalDevPolicy,
Thu, Oct 15th, 2020
Amazon Elastic Kubernetes Service (EKS) uses IAM to provide authentication to the cluster
through the AWS IAM Authenticator for Kubernetes (aws-iam-authenticator). Multiple issues
were identified i...
Tue, Oct 6th, 2020
Lack of the privilege s3:PutBucketTagging did not restrict the ability
to tag S3 buckets.
Mon, Sep 28th, 2020