Locking Down the Security of AWS IAM
Becki LeeThis post is based on the Fugue's Cloud Security Masterclass series focused on AWS IAM security.
Read MoreLatest Posts
Our Partnership with Sonatype: Securing the Modern Cloud Attack Surface
Drew WrightToday, Sonatype and Fugue have partnered to deliver the tools developers and operations need to address every meaningful cloud attack surface and ensure compliance at every stage of the SDLC with a single unified solution. Read the press release here.
Read MoreCloud Network Security 101: Azure Service Endpoints vs. Private Endpoints
Becki LeeAzure offers two similar but distinct services to allow virtual network (VNet) resources to privately connect to other Azure services. Azure VNet Service Endpoints and Azure Private Endpoints (powered by Azure Private Link) both promote network security by allowing VNet traffic to communicate with service resources without going over the internet, but there are some differences. This three-part blog series goes into detail about both services.
Read MoreThinking Like a Cloud Hacker: Part 1
Josh StellaThis is a companion post to our Cloud Security Masterclass on the subject. Our objective is to examine some real world, published cloud exploits and examine both the motivations and techniques of the hackers responsible for them so that you can understand who you are up against, how and why they act, and how to better protect your cloud infrastructure.
Read MoreCloud Network Security 101: Azure Private Link & Private Endpoints
Becki LeeAzure offers two similar but distinct services to allow virtual network (VNet) resources to privately connect to other Azure services. Azure VNet Service Endpoints and Azure Private Endpoints (powered by Azure Private Link) both promote network security by allowing VNet traffic to communicate with service resources without going over the internet, but there are some differences. This three-part blog series goes into detail about both services.
Read More5 tips for using the Rego language for Open Policy Agent (OPA)
Jasper Van der JeugtAt Fugue, we’re pretty fond of Open Policy Agent (OPA), and we’ve written a lot of Rego code to keep cloud resources secure. So we’ve put together the most valuable lessons we’ve learned in the process.
Read MoreCloud Network Security 101: Azure Virtual Network Service Endpoints
Becki LeeMicrosoft Azure offers two similar but distinct services to allow virtual network (VNet) resources to privately connect to other Azure services. Azure VNet Service Endpoints and Azure Private Endpoints (powered by Azure Private Link) both promote network security by allowing VNet traffic to communicate with service resources without going over the internet, but there are some differences.
Read MoreBuilding a Secure Amazon S3 Bucket (AWS)
Josh StellaMuch has been said about Amazon S3 security on Amazon Web Services (AWS) in the press and technical publications, and much of it is oversimplified and of limited practical use. Amazon S3 is an incredibly simple cloud service to use, but adequately securing your S3 resources is anything but simple, as too many organizations have discovered.
Read MoreIntroducing Zim: A caching build system for teams using monorepos
Drew WrightZim is a caching build system that is ideal for software development teams using monorepos that contain many components and dependencies. Zim provides for fast incremental, parallel builds across a team and is entirely language agnostic with built-in support for cross-platform builds via Docker. Zim is available as an open source project hosted on GitHub.
Read MoreIntroducing the Engineer’s Handbook on Cloud Security
Drew Wright“The cloud has radically changed the IT security landscape. The vulnerability surface is different. Attackers operate differently. And how you go about keeping your data safe needs to be different.”
Read MoreFugue Developer
Free Cloud Security for Engineers
- Visualize your cloud infrastructure
- Run policy checks and get feedback
- Detect change and eliminate misconfiguration
