Nick Jones
@nojones.net
Head of Research @ Reversec - cloud security, automation, DevOps and attack detection. Opinions are my own.
Reposted by Nick Jones
You stood up for Mitnick.
You stood up for Marcus Hutchins.
You stood up for Anonymous.
Aaron Swartz.
Ed Snowden.
Chelsea Manning.
Ross Ulbricht.
You stood up for them, regardless of whether you agreed with them. It was the right thing to do.
Now it’s time to stand up for Chris Krebs.
You stood up for Marcus Hutchins.
You stood up for Anonymous.
Aaron Swartz.
Ed Snowden.
Chelsea Manning.
Ross Ulbricht.
You stood up for them, regardless of whether you agreed with them. It was the right thing to do.
Now it’s time to stand up for Chris Krebs.
April 27, 2025 at 5:49 PM
You stood up for Mitnick.
You stood up for Marcus Hutchins.
You stood up for Anonymous.
Aaron Swartz.
Ed Snowden.
Chelsea Manning.
Ross Ulbricht.
You stood up for them, regardless of whether you agreed with them. It was the right thing to do.
Now it’s time to stand up for Chris Krebs.
You stood up for Marcus Hutchins.
You stood up for Anonymous.
Aaron Swartz.
Ed Snowden.
Chelsea Manning.
Ross Ulbricht.
You stood up for them, regardless of whether you agreed with them. It was the right thing to do.
Now it’s time to stand up for Chris Krebs.
Reposted by Nick Jones
Join AWS User Group Oslo on our 10 year anniversary meeting 🎉 on May 26th. Sebastian Anton and @nojones.net will talk about Security. Sponsor is ardoq.com 🙏 www.meetup.com/aws-user-gro...
Security in focus and AWS User Group Oslo 10 years anniversary!, Mon, May 26, 2025, 4:30 PM | Meetup
This meeting will take place *exactly (on the day)* 10 years after our first meeting! 🥳 - Do not miss out on this opportunity to be able to say that you attended the anniv
www.meetup.com
April 25, 2025 at 7:42 AM
Join AWS User Group Oslo on our 10 year anniversary meeting 🎉 on May 26th. Sebastian Anton and @nojones.net will talk about Security. Sponsor is ardoq.com 🙏 www.meetup.com/aws-user-gro...
Reposted by Nick Jones
If you're looking for the security talks from Kubecon NA 2024, I've added the abstracts and Youtube embeds to talks.container-security.site/categories/#... .
There's also talks going back to 2016 in case you really want to watch a lot of container security videos!
There's also talks going back to 2016 in case you really want to watch a lot of container security videos!
Posts by Category
This site hosts a list of talks from various conferences on the topic of Cloud Native security.
talks.container-security.site
November 18, 2024 at 7:27 PM
If you're looking for the security talks from Kubecon NA 2024, I've added the abstracts and Youtube embeds to talks.container-security.site/categories/#... .
There's also talks going back to 2016 in case you really want to watch a lot of container security videos!
There's also talks going back to 2016 in case you really want to watch a lot of container security videos!
Reposted by Nick Jones
I don’t Ian is on Bluesky yet, and I don’t want you to miss this blog post! Ian McKay breaks down how RCPs are useful and some limitations.
onecloudplease.com/blog/resourc...
onecloudplease.com/blog/resourc...
Resource Control Policies: Closing the data perimeter gap – One Cloud Please
It's pre:Invent season, and one of the most consequential identity and access management features was just released by the identity team at AWS. Resource Control Policies, a strong tool for establishi...
onecloudplease.com
November 17, 2024 at 6:00 PM
I don’t Ian is on Bluesky yet, and I don’t want you to miss this blog post! Ian McKay breaks down how RCPs are useful and some limitations.
onecloudplease.com/blog/resourc...
onecloudplease.com/blog/resourc...
Reposted by Nick Jones
Despite concerns that AWS would be overly genAI focused for re:Invent, this has been one of the strongest re:Invents in years for announcements I'm interested in.
November 21, 2024 at 1:11 AM
Despite concerns that AWS would be overly genAI focused for re:Invent, this has been one of the strongest re:Invents in years for announcements I'm interested in.
Reposted by Nick Jones
Update: I spoke too soon! Thank you to @nojones.net
for pointing this out. According to the specific GuardDuty docs the "VPC endpoint detection is only available for services that support network activity events", which at this time is only 4 services. So we can still abuse it!
for pointing this out. According to the specific GuardDuty docs the "VPC endpoint detection is only available for services that support network activity events", which at this time is only 4 services. So we can still abuse it!
October 22, 2024 at 3:34 AM
Update: I spoke too soon! Thank you to @nojones.net
for pointing this out. According to the specific GuardDuty docs the "VPC endpoint detection is only available for services that support network activity events", which at this time is only 4 services. So we can still abuse it!
for pointing this out. According to the specific GuardDuty docs the "VPC endpoint detection is only available for services that support network activity events", which at this time is only 4 services. So we can still abuse it!