Mario Lechończak

AWS announced new additional metadata fields for Amazon VPC Flow Logs. The most useful part for day-to-day troubleshooting is that flow log records can now include tag values from related resources, such as EC2 instances, network interfaces, and Auto Scaling groups. They can also include next-hop metadata, which helps explain how traffic leaves or moves through the VPC. That means a query no longer has to start from an IP address or ENI ID. You can filter traffic by names and routing context that humans actually recognize. ...

On 6 May 2026, I had the opportunity to attend AWS Summit Warsaw at EXPO XXI in Warsaw. The event gathered cloud engineers, architects, developers, and technology leaders from across Poland and Europe to discuss the future of cloud computing, AI, and modern infrastructure. This year’s summit was heavily AWS-focused, especially around AI, serverless technologies, cloud modernization, and infrastructure automation. There were many technical sessions and customer stories showing how companies are using AWS to scale their platforms and build modern cloud-native applications. ...

Data exfiltration is the unauthorized transfer of data from an organization’s systems to an external destination controlled by an attacker. In AWS environments, one of the most common exfiltration vectors involves copying data from company S3 buckets to attacker-controlled ones. It’s deceptively simple, surprisingly effective, and — if you’re not prepared — almost impossible to detect in time. In this article, we’ll walk through a realistic attack scenario step by step, and then close the door on the attacker — one layer at a time. ...