• Home

  • Data & Analytics

  • How our AWS account got hacked and what we did to ensure it never happened again
11
Continuous Assurance

How our AWS account got hacked and what we did to ensure it never happened again

Embed Size (px)

Citation preview

Page 1: How our AWS account got hacked and what we did to ensure it never happened again

Continuous Assurance

Page 2: How our AWS account got hacked and what we did to ensure it never happened again

A Typical AWS journey

Page 3: How our AWS account got hacked and what we did to ensure it never happened again

Best practice is new and complex

Page 4: How our AWS account got hacked and what we did to ensure it never happened again

With great power comes great responsibility

1: Respect the privacy of others.2: Think before you type.

3: With great power comes great responsibility.

[sudo] login

Page 5: How our AWS account got hacked and what we did to ensure it never happened again

Shared Responsibility!

Page 6: How our AWS account got hacked and what we did to ensure it never happened again

Typical monthly AWS bill

Spiraling Cost

Monthly AWS bill after compromise

Page 7: How our AWS account got hacked and what we did to ensure it never happened again

 NAT not designed for failure

Figure 1a: Internet-bound traffic through a NAT instance

Figure 1b: Internet-bound traffic interrupted during NAT

failure

Page 8: How our AWS account got hacked and what we did to ensure it never happened again

 NAT designed for failure

Virtual Private Cloud

Page 9: How our AWS account got hacked and what we did to ensure it never happened again

SSL certificate

The site’s security certificate has expired!

Page 10: How our AWS account got hacked and what we did to ensure it never happened again

What we built to solve this! – Cloud Conformity Demo

Page 11: How our AWS account got hacked and what we did to ensure it never happened again

Register your interest at

cloudconformity.com

Beta finishes September

1st

WIN anAmazon

Echo

Continuous Assurance


Legend - Hacked By Foaad Pal | Hacked By Foaad Pal

Legend - Hacked By Foaad Pal | Hacked By Foaad Pal

Documents
HACKED WEBSITE TREND REPORT

HACKED WEBSITE TREND REPORT

Documents
Bsm Hacked Paper

Bsm Hacked Paper

Documents
MWEB Business: Hacked

MWEB Business: Hacked

Documents
3 Hacked Chords

3 Hacked Chords

Documents
Hacked By PaRaziT

Hacked By PaRaziT

Documents
What is Bath: Hacked?

What is Bath: Hacked?

Technology
Hacked Off with Hackathons

Hacked Off with Hackathons

Business
PRP - Hacked Off

PRP - Hacked Off

Documents
Hacked Revealed: Penetration Profession

Hacked Revealed: Penetration Profession

Education
When Macs Get Hacked

When Macs Get Hacked

Documents
WEBSITE HACKED TREND REPORT

WEBSITE HACKED TREND REPORT

Documents
Hacking Team Hacked? - Lessons learned!

Hacking Team Hacked? - Lessons learned!

Technology
Everyone’s Been Hacked Now What?. OakRidge What happened?

Everyone’s Been Hacked Now What?. OakRidge What happened?

Documents
AWS re:Invent 2016 Recap: What Happened, What It Means

AWS re:Invent 2016 Recap: What Happened, What It Means

Technology
HACKED WEBSITE TREND REPORT - Sucuri — … · HACKED WEBSITE TREND REPORT 2016 - Q2 The latest trends into how websites get hacked, ... ModX and vBulletin are being removed from

HACKED WEBSITE TREND REPORT - Sucuri — … · HACKED WEBSITE TREND REPORT 2016 - Q2 The latest trends into how websites get hacked, ... ModX and vBulletin are being removed from

Documents
2016 GPUG Summit Hacked

2016 GPUG Summit Hacked

Documents
OWASP Newcastle · May 2015 - MSpy hacked, 400,000 user accounts exposed June 2016 - WtSpy hacked, 179,802 user accounts exposed April 2017 - Flexispy hacked April 2017 - Retina-X

OWASP Newcastle · May 2015 - MSpy hacked, 400,000 user accounts exposed June 2016 - WtSpy hacked, 179,802 user accounts exposed April 2017 - Flexispy hacked April 2017 - Retina-X

Documents
Fileshare.ro Hacked

Fileshare.ro Hacked

Documents
Hacked By Turkhacks

Hacked By Turkhacks

Documents
Internet of Hacked Things

Internet of Hacked Things

Technology
Hacked - EVERYONE INTRUSTED

Hacked - EVERYONE INTRUSTED

Internet
Its Ok To Get Hacked

Its Ok To Get Hacked

Technology
How i hacked programer computer

How i hacked programer computer

Technology
R u hacked

R u hacked

Technology
HACKED WEBSITE TREND REPORT - sucuri.net

HACKED WEBSITE TREND REPORT - sucuri.net

Documents
Getting hacked

Getting hacked

Documents
To be Hacked or not to be Hacked!

To be Hacked or not to be Hacked!

Technology
Why Would I Be Hacked?

Why Would I Be Hacked?

Internet
ID Theft: Managing Risk and Controlling Damage€¦ · Been Hacked: 1. Find Out What Happened. To respond effectively, get a full picture of what happened, including how the hackers

ID Theft: Managing Risk and Controlling Damage€¦ · Been Hacked: 1. Find Out What Happened. To respond effectively, get a full picture of what happened, including how the hackers

Documents