October 11, 2023

230: If I Ever Own a Sailboat, I Will Name it Kafka… and Sail it on a Data Lake

54 minutes

Welcome to The Cloud Pod episode 230, where the forecast is always cloudy! This week we’re sailing our pod across the data lake and talking about updates to managed delivery from Kafka. We also take a gander at Bedrock, some new security tools from our friends over at Google. We’re also back with our Cloud Journey Series talking security theater.Stay Tuned!

Titles we almost went with this week:

Security and Delivery Within an Hour… Sacrilegious!

Unlock Global Innovation with Sovereign Cloud

Microsoft… What in the World Are You Doing?

If I ever own a sailboat, I will name it Kafka.

And the Oscar for Security Theater goes to…

A big thanks to this week’s sponsor:

Foghorn Consulting provides top-notch cloud and DevOps engineers to the world’s most innovative companies. Initiatives stalled because you have trouble hiring? Foghorn can be burning down your DevOps and Cloud backlogs as soon as next week.

General News this Week:

01:15 Microsoft fans… This isn’t going to be pretty. You were warned.

Microsoft Warns of Cyber Attacks Attempting to Breach Cloud via SQL Server Instance

Microsoft…The Truth Is Even Worse Than You Think

Microsoft comes under blistering criticism for “grossly irresponsible” security

In what has turned out to be a not so great week for Microsoft (and their customers) the software giant has released an urgent warning for SQL server instances running on Azure. **Insert meme of dog saying it’s fine surrounded by fire here**

Microsoft has detailed a new campaign in which attackers unsuccessfully attempted to move laterally to a cloud environment through a SQL server instance.

The attacker initially exploited a SQL injection vulnerability in an app, and then was able to gain access and elevated permission on MS SQL instance deployed in Azure VM.

The threat actor than attempted to move horizontally by abusing the server’s cloud identity, which could possess elevated permissions (least privilege folks)

MS says it found no evidence that the attacker successfully moved.

Considering the recent criticism by Tenable CEO who threw them under the bus for not fixing a major vulnerability for over 90 days, this warning and confirmation seems like a step in the right direction.

04:37 Matthew- “I mean, also just the scale of these hypervisors, sometimes it just takes time. Like – you don’t want to quickly roll out a hotfix to something, realize you caused another problem, and now you’re playing whack-a-mole because you’re moving too fast and not taking a step back and fixing the root cause of it.”

AWS – Kafka Managed Delivery

07:07

...more

View all episodes

By Justin Brodley, Jonathan Baker, Ryan Lucas and Matthew Kohn

4.9

3333 ratings