Jared Naude
@JaredNaude
Followers
593
Following
2K
Media
825
Statuses
2K
Cloud Architect & Security Engineer. Security researcher focused on national security and foreign policy. Organizer @BSidesCapeTown & @BSidesJoburg
Johannesburg, South Africa
Joined August 2018
Someone created a "37c3" message in morse code with IPv6 packets that is visible from the monitoring system. Super cool 😎 #37c3
5
74
612
To mark the start of 2026, I made a short montage of the 2025 news events that stood out to me. Wildfires in LA, AI and privacy concerns, aviation accidents, space launches, Eurovision, and Poland's rebuke to Russia at the UN.
0
0
1
Nothing is more poetic than driving past the US Embassy on the way to work and seeing the US flag at half mast on inauguration day.
0
0
0
Are cloud defenders focusing on the right issues when securing cloud environments? This is what I will be discussing during my talk at BSides Cape Town in December.
🎤 BSides 2024 SPEAKER ANNOUNCEMENT 🎤 "Cloud Security Theater: Rising above the Noise of Misguided Strategies" - Presented by Jared Naude "To secure cloud environments effectively, a modern operating model needs to be created to solve the real security challenges faced during
0
0
0
You know you are having an impact on internal security culture when developers start making threat intel jokes during company meetings.
0
0
0
Watching at the Pwnie's at Defcon and saw this in the nominations 😂
0
0
0
These kinds of vulnerabilities extend to AssumeRoleWithWebIdentity where if a condition is not include in a trust policy, attackers could use the trust to a provider to gain unauthorized access to an AWS account. AWS has only fixed this for GitHub.
0
0
0
A confused deputy attack that was found in AWS AppSync. Really cool piece of research @Frichette_n
#Defcon
1
0
1
I feel vindicated after rallying against the use of CodeCommit now that AWS has decided to discontinue it. Storing code in an AWS account is a recipe for disaster. In addition, AWS is also deprecating S3 Select, CloudSearch, Cloud9, SimpleDB, Forecast and Data Pipeline.
After giving it a lot of thought, we made the decision to discontinue new access to a small number of services, including AWS CodeCommit. While we are no longer onboarding new customers to these services, there are no plans to change the features or experience you get today,
0
0
0
My team and I trying to understand the migration from @steampipeio to @powerpipeio and eventually how @flowpipeio will fit into our workflows.
1
0
6
Next up is the post team. 4386 postcards were sent externally of which 3125 were to Germany and 58 were to other countries. 38k postcards were used internally for the event. #37c3
0
1
2
Next up is the fashion operations center, who sold 8 products with a total of 78 size variations. There were 3755 preordered items. #37c3
1
0
4
Next up is the Angel team who makes the event possible. There were 3939 angels and 2725 did at least one shift. #37c3
1
1
0
For COVID, 14 000 cubic meters of air was filtered and 15 000 self tests were handed out and 17 000 masks. #37c3
1
1
1
Next up is CERT. There were 5 Treatment stations with 1 Isolation station. CERT walked 1 176 km during the event. 110L WHO drink was provided to attendees. 186 CERT Angels. Average treatment time was 5 minutes. Most incidents were related to soldering or broken bottles. #37c3
1
0
2
Next up is the hub team who looks after the sessions and wiki. There are 4 sources of talk data that is then then merged, distributed and rooms allocated. #37c3
1
0
1
Next up is Assembly team which has the job of putting the various assemblies together and ensure everyone had good neighbors. There were 308 Assemblies, 14 000 chairs on 12 500 sq/m of floor space. 10 Assemblies had to be relocated. #37c3
1
0
2