This content is open to everyone — sign in to save your progress, earn points, and unlock module exams.
Topic 2.6 of Cloud Threats and Attack Vectors
The anatomy of S3 bucket misconfiguration, multi-layer access control, real breach case studies, and technical controls for insider threat detection and prevention.
By the end of this topic, you will
Quadrant 1 · e-Tutorial
Quadrant 2 · e-Content
Quadrant 3 · Web Resources
Downloadable reference material
External links
AWS S3 Block Public Access Documentation
AWS documentation on the four Block Public Access settings and their interactions.
AWS Macie User Guide
Amazon Macie documentation for PII discovery and sensitive data classification in S3.
CISA Insider Threat Mitigation Guide
CISA guidance on technical and behavioural controls for insider threat programmes.
Verizon DBIR 2024: Insider Threat Statistics
Verizon Data Breach Investigations Report — industry data on insider threat frequency and impact.
Quadrant 4 · Self-Assessment
Cloud Threats, Attacks and Privacy
CSA Top 10, SSRF/IMDS, IMDSv2, EDoS, man-in-the-cloud, STRIDE, MITRE ATT&CK for Cloud, and data residency.
Cloud Security: Complete Assessment
Comprehensive 120-question assessment covering all six chapters of the Cloud Security eBook 2026.