---
title: "Check Your Email Security Please"
id: "14352"
type: "podcast"
slug: "check-your-email-security-please"
published_at: "2023-11-02T10:00:00+00:00"
modified_at: "2024-02-14T20:24:03+00:00"
url: "https://www.lastweekinaws.com/podcast/aws-morning-brief/check-your-email-security-please/"
markdown_url: "https://www.lastweekinaws.com/podcast/aws-morning-brief/check-your-email-security-please.md"
taxonomy_shows:
  - "Last Week In AWS"
---

About the Author Corey is the Chief Cloud Economist at Duckbill, where he specializes in helping companies improve their AWS bills by making them smaller and less horrifying. He also hosts the "Screaming in the Cloud" and "AWS Morning Brief" podcasts; and curates "Last Week in AWS," a weekly newsletter summarizing the latest in AWS news, blogs, and tools, sprinkled with snark and thoughtful analysis in roughly equal measure.

[https://podcasts.apple.com/us/podcast/aws-morning-brief/id1466344305](https://podcasts.apple.com/us/podcast/aws-morning-brief/id1466344305)

[https://overcast.fm/itunes1466344305/aws-morning-brief](https://overcast.fm/itunes1466344305/aws-morning-brief)

[https://pca.st/AKs0](https://pca.st/AKs0)

[https://podcastaddict.com/podcast/2382583](https://podcastaddict.com/podcast/2382583)

[https://open.spotify.com/show/3A04JNrNAcZMvn8cvDWpWU](https://open.spotify.com/show/3A04JNrNAcZMvn8cvDWpWU)

[https://feeds.transistor.fm/aws-morning-brief](https://feeds.transistor.fm/aws-morning-brief)

## Episode Summary

Last week in security news: Using AWS role session tags for GitHub Actions, A summary of the Okta hack is pretty damning, IAM Roles Anywhere with an external certificate authority, and more!

## Episode Show Notes & Transcript

**Links:**

- I like this writeup of using [AWS role session tags for GitHub Actions](https://awsteele.com/blog/2023/10/25/aws-role-session-tags-for-github-actions.html) but I hate that I have to use Cognito to pull it off.
- This [summary of the Okta hack](https://x.com/mattjay/status/1716870499458822418?s=20) is pretty damning.
- [AWS Digital Sovereignty Pledge: Announcing a new, independent sovereign cloud in Europe](https://aws.amazon.com/blogs/security/aws-digital-sovereignty-pledge-announcing-a-new-independent-sovereign-cloud-in-europe/)
- [IAM Roles Anywhere with an external certificate authority](https://aws.amazon.com/blogs/security/iam-roles-anywhere-with-an-external-certificate-authority/)
- The key line from this 2018 post remains true: [access to the root email and phone number is equivalent, if not more powerful, than the root password and MFA!](https://summitroute.com/blog/2018/06/20/managing_aws_root_passwords_and_mfa/)

 View Full Transcript  Hide Full Transcript

## You might also like

[More Podcast Episodes](https://www.lastweekinaws.com/podcast/aws-morning-brief/)