--- title: "Mobile Authentication to AWS is Hard" id: "13001" type: "podcast" slug: "mobile-authentication-to-aws-is-hard" published_at: "2022-09-08T10:00:00+00:00" modified_at: "2026-05-17T00:04:45+00:00" url: "https://www.lastweekinaws.com/podcast/last-week-in-aws-podcast/mobile-authentication-to-aws-is-hard/" markdown_url: "https://www.lastweekinaws.com/podcast/last-week-in-aws-podcast/mobile-authentication-to-aws-is-hard.md" taxonomy_shows: - "Last Week In AWS Podcast" --- About the Author Corey is the Chief Cloud Economist at Duckbill, where he specializes in helping companies improve their AWS bills by making them smaller and less horrifying. He also hosts the "Screaming in the Cloud" and "AWS Morning Brief" podcasts; and curates "Last Week in AWS," a weekly newsletter summarizing the latest in AWS news, blogs, and tools, sprinkled with snark and thoughtful analysis in roughly equal measure. [https://podcasts.apple.com/us/podcast/aws-morning-brief/id1466344305](https://podcasts.apple.com/us/podcast/aws-morning-brief/id1466344305) [https://overcast.fm/itunes1466344305/aws-morning-brief](https://overcast.fm/itunes1466344305/aws-morning-brief) [https://pca.st/AKs0](https://pca.st/AKs0) [https://podcastaddict.com/podcast/2382583](https://podcastaddict.com/podcast/2382583) [https://open.spotify.com/show/3A04JNrNAcZMvn8cvDWpWU](https://open.spotify.com/show/3A04JNrNAcZMvn8cvDWpWU) [https://feeds.transistor.fm/aws-morning-brief](https://feeds.transistor.fm/aws-morning-brief) ## Episode Summary Last week in security news: Over 1,000 iOS apps found exposing hardcoded AWS credentials, how to handle Incident Response in AWS, this week's security tool, and more! ## Episode Show Notes & Transcript **Links:** - 1Password frankly got it wrong with their [assertion that you shouldn't bother with MFA for 1Password itself](https://blog.1password.com/should-protect-1password-with-2fa/) . - Joe Frichette has a handy guide on the [ordered steps to take](https://hackingthe.cloud/aws/exploitation/orphaned_%20cloudfront_or_dns_takeover_via_s3/) to avoid CloudFront or DNS domain takeovers on AWS - [Over 1,000 iOS apps found exposing hardcoded AWS credentials](https://www.bleepingcomputer.com/news/security/over-1-000-ios-apps-found-exposing-hardcoded-aws-credentials/) - Chris Farris has a great post covering how to handle [Incident Response in AWS](https://www.chrisfarris.com/post/aws-ir/) . - [Announcing new AWS IAM Identity Center APIs to manage users and groups at scale](https://aws.amazon.com/blogs/security/announcing-new-aws-iam-identity-center-apis-to-manage-users-and-groups-at-scale/) - [How to subscribe to the new Security Hub Announcements topic for Amazon SNS](https://aws.amazon.com/blogs/security/how-to-subscribe-to-the-new-security-hub-announcements-topic-for-amazon-sns/) - This week's tool is an open source dingus that lets you use TouchID on supported Macs to [authenticate sudo on macOS](https://it.digitaino.com/use-touchid-to-authenticate-sudo-on-macos/) . View Full Transcript Hide Full Transcript ## You might also like [More Podcast Episodes](https://www.lastweekinaws.com/podcast/last-week-in-aws-podcast/) ### [M3 Ultra Macs, Claude Platform, and 619 New APIs Walk Into a Bar](https://www.lastweekinaws.com/podcast/last-week-in-aws-podcast/m3-ultra-macs-claude-platform-and-619-new-apis-walk-into-a-bar/) Last Week In AWS Podcast 05.18.2026 7 Minutes [Listen Now](https://www.lastweekinaws.com/podcast/last-week-in-aws-podcast/m3-ultra-macs-claude-platform-and-619-new-apis-walk-into-a-bar/) ### [AI-Native Foundations and the CVEs That Love Them](https://www.lastweekinaws.com/podcast/last-week-in-aws-podcast/ai-native-foundations-and-the-cves-that-love-them/) Last Week In AWS Podcast 05.11.2026 7 Minutes [Listen Now](https://www.lastweekinaws.com/podcast/last-week-in-aws-podcast/ai-native-foundations-and-the-cves-that-love-them/) ### [Bedrock Bags OpenAI, Q Developer Bags Groceries](https://www.lastweekinaws.com/podcast/last-week-in-aws-podcast/bedrock-bags-openai-q-developer-bags-groceries/) Last Week In AWS Podcast 05.04.2026 9 Minutes [Listen Now](https://www.lastweekinaws.com/podcast/last-week-in-aws-podcast/bedrock-bags-openai-q-developer-bags-groceries/)