"This allowed us to completely bypass the application’s tenant isolation and access data from any tenant in the system"
Official announcement from AWS: https://aws.amazon.com/blogs/security/removing-header-remapping-from-amazon-api-gateway-and-notes-about-our-work-with-security-researchers/
Let's deploy LLMs everywhere! What could possibly go wrong?
I'm not sure how much I believe in prompt firewall similar things but I applaud and welcome all efforts!
fwd:cloudsec is by far ny favorite cloud security conference. Day one has already passed (sessions are recorded) and day 2 is about to start.
See schedule at: https://fwdcloudsec.org/schedule.html