When a Zero Day and Access Keys Collide in the Cloud - Responding to the SugarCRM 0-Day Vulnerability

Explore a comprehensive analysis of attacks against AWS environments in this 24-minute Black Hat conference talk. Map out various cloud security threats using the MITRE ATT&CK Matrix framework and discover multiple prevention mechanisms organizations can implement for protection. Delve into the complexity of these attacks, understanding how seemingly harmless AWS API calls can lead to more severe, difficult-to-trace activities. Learn why a one-size-fits-all approach doesn't work in cloud security and identify key areas to focus on for effective defense against potential threats. Gain valuable insights from Margaret Zimmermann's expertise to enhance your organization's cloud security readiness.