avatarTeri Radichel

Free AI web copilot to create summaries, insights and extended knowledge, download it at here

5906

Abstract

    </a>
    </div><div id="9a66" class="link-block">
      <a href="https://readmedium.com/welcome-to-bugs-that-bite-ebe43f35afbd">
        <div>
          <div>
            <h2>Welcome to Bugs that Bite</h2>
            <div><h3>Introducing a new blog from Teri Radichel</h3></div>
            <div><p>medium.com</p></div>
          </div>
          <div>
            <div style="background-image: url(https://miro.readmedium.com/v2/resize:fit:320/1*4oxP4LXk8l8c3mpRvO7ejg.png)"></div>
          </div>
        </div>
      </a>
    </div><div id="775f" class="link-block">
      <a href="https://readmedium.com/valueerror-too-many-values-to-unpack-expected-2-2b37ab0b6b5d">
        <div>
          <div>
            <h2>ValueError: too many values to unpack (expected 2)</h2>
            <div><h3>Too many values passed back from a python function</h3></div>
            <div><p>medium.com</p></div>
          </div>
          <div>
            <div style="background-image: url(https://miro.readmedium.com/v2/resize:fit:320/1*4oxP4LXk8l8c3mpRvO7ejg.png)"></div>
          </div>
        </div>
      </a>
    </div><div id="49d2" class="link-block">
      <a href="https://readmedium.com/invalidkeyid-when-calling-the-putparameter-operation-invalid-keyid-xxxxxxxxxxx-service-awskms-450551a84a42">
        <div>
          <div>
            <h2>(InvalidKeyId) when calling the PutParameter operation: Invalid keyId xxxxxxxxxxx (Service: AWSKMS…</h2>
            <div><h3>Getting an InvalidKeyID error when trying to add a parameter to AWS Systems Manager Parameter Store — but the key…</h3></div>
            <div><p>medium.com</p></div>
          </div>
          <div>
            <div style="background-image: url(https://miro.readmedium.com/v2/resize:fit:320/1*4oxP4LXk8l8c3mpRvO7ejg.png)"></div>
          </div>
        </div>
      </a>
    </div><p id="d015">This one is particularly interesting because I’ve been fighting spam on Twitter and other social media platforms as well.</p><div id="4562" class="link-block">
      <a href="https://readmedium.com/twitter-spam-bug-d5317df332f2">
        <div>
          <div>
            <h2>Twitter Spam Bug</h2>
            <div><h3>Being bombarded with crypto spam and Twitter weird block doesn’t seem to work correctly</h3></div>
            <div><p>medium.com</p></div>
          </div>
          <div>
            <div style="background-image: url(https://miro.readmedium.com/v2/resize:fit:320/1*4oxP4LXk8l8c3mpRvO7ejg.png)"></div>
          </div>
        </div>
      </a>
    </div><p id="6e0d">A book review:</p><div id="888a" class="link-block">
      <a href="https://readmedium.com/cybersecurity-book-review-how-to-measure-anything-in-cybersecurity-risk-6c023388701f">
        <div>
          <div>
            <h2>Cybersecurity Book Review: How to Measure Anything in Cybersecurity Risk</h2>
            <div><h3>ACM.1 You cannot manage what you cannot measure</h3></div>
            <div><p>medium.com</p></div>
          </div>
          <div>
            <div style="background-image: url(https://miro.readmedium.com/v2/resize:fit:320/0*ichkq0c1L9YMuERO.jpg)"></div>
          </div>
        </div>
      </a>
    </div><p id="93f1">Security Architecture is Not a Checklist</p><div id="ef48" class="link-block">
      <a href="https://readmedium.com/security-architecture-is-not-a-checklist-b86f1dc0aa0c">
        <div>
          <div>
            <h2>Security Architecture is Not A Checklist</h2>
            <div><h3>ACM.14 Think like an attacker and architect accordingly</h3></div>
            <div><p>medium.com</p></div>
          </div>
          <div>
            <div style="background-image: url(https://miro.readmedium.com/v2/resize:fit:320/1*VKBd42zNr97OqzD4i4k5aA.png)"></div>
          </div>
        </div>
      </a>
    </div><div id="bbb4" class="link-block">
      <a href="https://readmedium.com/specifying-the-roles-an-iam-identity-can-assume-55cf8fc8715c">
        <div>
          <div>
            <h2>Specifying the Roles an IAM Identity Can Assume</h2>
            <div><h3>ACM.33 Limiting the Confused Deputy Attack in IAM Policies</h3></div>
            <div><p>medium.com</p></div>
          </div>
          <div>
            <div style="background-image: url(https://miro.readmedium.com/v2/resize:fit:320/1*C_XQP4huTwA_1QRgZDQKRA.png)"></div>
          </div>
        </div>
      </a>
    </div><div id="f1ec" class="link-block">
      <a href="https://readmedium.com/a-kms-key-administrator-role-and-iam-policy-854461e73f43">
        <div>
          <div>
            <h2>A KMS Key Administrator Role and IAM Policy</h2>
            <div><h3>ACM.23 Creating a KMS Key administrator user and role plus IAM policies versus Managed Policies in CloudFormation</h3></div>
            <div><p>medium.com</p></div>
          </div>
          <div>
            <div style="background-image: url(https://miro.readmedium.com/v2/resize:fit:320/1*2Y49asM0AWD--bGAcS4LAg.png)"></div>
          </div>
        </div>
      </a>
    </div><div id="e153" class="link-block">
      <a href="https://readmedium.com/confused-deputy-attack-in-iam-resource-and-assumerole-policies-8fea3e2553b2">
        <div>
          <div>
            <h2>Confused Deputy Attack in IAM, Resource, and AssumeRole Policies</h2>
            <div><h3>ACM.31: Considering how an attacker could abuse role templates</h3></div>
            <div><p>medium.com</p></div>
          </div>

Options

  <div>
            <div style="background-image: url(https://miro.readmedium.com/v2/resize:fit:320/1*3kFlmafBG_ppXn7QRD46ng.png)"></div>
          </div>
        </div>
      </a>
    </div><div id="e617" class="link-block">
      <a href="https://readmedium.com/components-of-an-aws-batch-job-ce70e3b1b11">
        <div>
          <div>
            <h2>Components of an AWS Batch Job</h2>
            <div><h3>ACM.6 Considering the composition of our batch jobs</h3></div>
            <div><p>medium.com</p></div>
          </div>
          <div>
            <div style="background-image: url(https://miro.readmedium.com/v2/resize:fit:320/1*uPi8wdTWsr-nDTrRpzhZ8g.png)"></div>
          </div>
        </div>
      </a>
    </div><p id="6da8">Sept 26, 2022: This one was taken out of Google’s index as approved by Google’s legal team but later reappeared.</p><div id="6131" class="link-block">
      <a href="https://readmedium.com/unique-aws-policy-templates-for-a-common-role-template-c84f2784e028">
        <div>
          <div>
            <h2>Unique AWS Policy Templates for a Common Role Template</h2>
            <div><h3>ACM.29: Creating a unique policy for batch jobs whose roles are created with a common CloudFormation template.</h3></div>
            <div><p>medium.com</p></div>
          </div>
          <div>
            <div style="background-image: url(https://miro.readmedium.com/v2/resize:fit:320/1*zL_-5yVH4lJ-LYCHpjyCog.png)"></div>
          </div>
        </div>
      </a>
    </div><div id="c6f5" class="link-block">
      <a href="https://readmedium.com/creating-automation-credentials-without-exposing-them-to-users-420fecd4856">
        <div>
          <div>
            <h2>Creating Automation Credentials Without Exposing Them To Users</h2>
            <div><h3>ACM.35: Creating Secrets in AWS Secrets Manager with CloudFormation</h3></div>
            <div><p>medium.com</p></div>
          </div>
          <div>
            <div style="background-image: url(https://miro.readmedium.com/v2/resize:fit:320/1*LUC7sW-Om1BDMRKlD9rNQw.png)"></div>
          </div>
        </div>
      </a>
    </div><div id="a807" class="link-block">
      <a href="https://readmedium.com/permission-denied-on-s3-path-s3-aws-controltower-logs-xxxxxxxx-json-gz-ef042fd20a1a">
        <div>
          <div>
            <h2>Permission denied on S3 path: s3://aws-controltower-logs-xxxxxxxx.json.gz.</h2>
            <div><h3>AWS Control Tower with CloudTrail Logs and Athena Not Working</h3></div>
            <div><p>medium.com</p></div>
          </div>
          <div>
            <div style="background-image: url(https://miro.readmedium.com/v2/resize:fit:320/1*4oxP4LXk8l8c3mpRvO7ejg.png)"></div>
          </div>
        </div>
      </a>
    </div><div id="4238" class="link-block">
      <a href="https://readmedium.com/querying-cloudtrail-with-cloudtraillake-caf2e9e0561f">
        <div>
          <div>
            <h2>Querying CloudTrail with CloudTrailLake</h2>
            <div><h3>ACM.37: Using CloudTrail Lake to query the actions needed to create zero-trust policies (Zero Trust Policies ~ Part 2)</h3></div>
            <div><p>medium.com</p></div>
          </div>
          <div>
            <div style="background-image: url(https://miro.readmedium.com/v2/resize:fit:320/1*Aznea7iQfPZaSJDnF45lvQ.png)"></div>
          </div>
        </div>
      </a>
    </div><div id="5701" class="link-block">
      <a href="https://readmedium.com/resource-iam-and-trust-policies-on-aws-2dd570da2b5">
        <div>
          <div>
            <h2>Resource, IAM, and Trust Policies on AWS</h2>
            <div><h3>ACM.24 Architecting defense in depth AWS policies.</h3></div>
            <div><p>medium.com</p></div>
          </div>
          <div>
            <div style="background-image: url(https://miro.readmedium.com/v2/resize:fit:320/1*4fCXS33c08zFdfQkuI1gFw.png)"></div>
          </div>
        </div>
      </a>
    </div><p id="34f2">Follow for updates.</p><p id="4a3a">Teri Radichel | <i>© <a href="https://2ndsightlab.com/?source=post_page---------------------------">2nd Sight Lab</a> 2022</i></p><div id="8b5f"><pre><span class="hljs-section">About Teri Radichel:

⭐️ Author: Cybersecurity Books
⭐️ Presentations: Presentations by Teri Radichel
⭐️ Recognition: SANS Award, AWS Security Hero, IANS Faculty
⭐️ Certifications: SANS ~ GSE 240
⭐️ Education: BA Business, Master of Software Engineering, Master of Infosec
⭐️ Company: Penetration Tests, Assessments, Phone Consulting ~ 2nd Sight Lab</pre></div><div id="caae"><pre><span class="hljs-section">Need Help With Cybersecurity, Cloud, or Application Security?
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~</span>
🔒 Request a penetration test or security assessment
🔒 Schedule a consulting call
🔒 Cybersecurity Speaker for Presentation</pre></div><div id="5a42"><pre>Follow <span class="hljs-keyword">for</span> more stories like <span class="hljs-keyword">this</span>:

❤️ Sign Up my Medium Email List ❤️ Twitter: <span class="hljs-meta">@teriradichel</span> ❤️ LinkedIn: https:<span class="hljs-comment">//www.linkedin.com/in/teriradichel</span> ❤️ Mastodon: <span class="hljs-meta">@teriradichel</span><span class="hljs-meta">@infosec</span>.exchange ❤️ Facebook: 2nd Sight Lab ❤️ YouTube: @2ndsightlab</pre></div><figure id="faf5"><img src="https://cdn-images-1.readmedium.com/v2/resize:fit:800/0*H9Ew1KCl-29nZiPR.jpeg"><figcaption></figcaption></figure></article></body>

Pages Sabotaged (Intentionally or Not) by Reposted Content

Tracking the pages that another site copied and posted on their own site as discovered in Google Search Engine Rankings

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

⚙️ Part of my series on Automating Cybersecurity Metrics. The Code.

🔒 Related Stories: Google Security | Cybersecurity.

💻 Free Content on Jobs in Cybersecurity | ✉️ Sign up for the Email List

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

I’ve started to track the pages I had to report to Google related to a particular site in this post. I see that the same site is posting many other cybersecurity news source blogs but they are not copying the entire blog post like they are doing to my site. I am not sure why my site in particular is being targeted.

Update: I had to contact the company multiple times but I did get someone to remove the content so removing the name of the company here. The company stated that this is a problem with the RSS feed and essentially indicated that it was my fault and I should somehow change the RSS feed from Medium which I do not control. If you are running a site based on an RSS feed:

  1. Do not copy the title of a blog and use it as the title of your own page. That’s not appropriate.
  2. Check and make sure you are not reposting the entire contents of the blog.

I am wondering how many times a person would have to report a site to Google at their legal site before this site is banned from the Google Index. I started listing every page I have to report here because they were not showing up in search engine rankings after the actions taken by the other site. Getting the content removed and posting these links helped Google “find” my content again. (I used to work as an SEO professional back when it was a new thing).

What was also interesting is that this site appeared to be registered at Google Domains or hosted by Google and yet it continues to plagiarize my blogs and others. Google’s legal team has approved every request I submitted for this site so far and yet I keep finding the site has added new pages to their feed from my blog.

You can look up who owns a site at https://whois.sc or other similar websites.

I wrote about how to find sites copying your content and how to report it to Google’s legal team here, along with an example of a blog post copied word for word onto their site:

These are the posts that were previously copied that I found in search engine rankings with no trace of my own pages:

I had to report it multiple times.

This page was actually copied by multiple sites: “Cannot Pass Spaces to AWS CloudFormation Deploy Parameter-Overrides”

This one is particularly interesting because I’ve been fighting spam on Twitter and other social media platforms as well.

A book review:

Security Architecture is Not a Checklist

Sept 26, 2022: This one was taken out of Google’s index as approved by Google’s legal team but later reappeared.

Follow for updates.

Teri Radichel | © 2nd Sight Lab 2022

About Teri Radichel:
~~~~~~~~~~~~~~~~~~~~
⭐️ Author: Cybersecurity Books
⭐️ Presentations: Presentations by Teri Radichel
⭐️ Recognition: SANS Award, AWS Security Hero, IANS Faculty
⭐️ Certifications: SANS ~ GSE 240
⭐️ Education: BA Business, Master of Software Engineering, Master of Infosec
⭐️ Company: Penetration Tests, Assessments, Phone Consulting ~ 2nd Sight Lab
Need Help With Cybersecurity, Cloud, or Application Security?
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
🔒 Request a penetration test or security assessment
🔒 Schedule a consulting call
🔒 Cybersecurity Speaker for Presentation
Follow for more stories like this:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ 
❤️ Sign Up my Medium Email List
❤️ Twitter: @teriradichel
❤️ LinkedIn: https://www.linkedin.com/in/teriradichel
❤️ Mastodon: @teriradichel@infosec.exchange
❤️ Facebook: 2nd Sight Lab
❤️ YouTube: @2ndsightlab
Coyright
Plagiarism
Cybersecurity
Iam
Cloud Security
Recommended from ReadMedium
avatarHazel Paradise
How I Create Passive Income With No Money

many ways to start a passive income today

5 min read
avatarKarolina Kozmana
Common side effects of not drinking

By rejecting alcohol, you reject something very human, an extra limb that we have collectively grown to deal with reality and with each…

10 min read
avatarSomnath Singh
The Era of High-Paying Tech Jobs is Over

The Death of Tech Jobs.

14 min read
avatarArtturi Jalli
I Built an App in 6 Hours that Makes $1,500/Mo

Copy my strategy!

3 min read
avatarScott Lindh
How I Discovered a CVE by Scanning Open Source Repositories

In this write-up, I share my journey of uncovering a Cross-Site Scripting (XSS) Vulnerability within the search functionality and course…

3 min read
avatarChittamuri Santosh
File transfer from SFTP to S3 Bucket:

You can transfer files from SFTP to S3 using various tools and scripts. Here are a few methods:

2 min read