"This allowed us to completely bypass the application’s tenant isolation and access data from any tenant in the system"
Official announcement from AWS: https://aws.amazon.com/blogs/security/removing-header-remapping-from-amazon-api-gateway-and-notes-about-our-work-with-security-researchers/
Let's deploy LLMs everywhere! What could possibly go wrong?
fwd:cloudsec is by far ny favorite cloud security conference. Day one has already passed (sessions are recorded) and day 2 is about to start.
See schedule at: https://fwdcloudsec.org/schedule.html
Hi!
I'm trying to get a better understanding of the longer term reliability of this instance. Is there any kind of about page or similar where I can read up on how it's setup, financed, managed etc?