patched CVE-2025-1315 on db-server-dev-01 (requires reboot window)

published new threat bulletin (CVE-2025-7586)

updated S3 bucket encryption policy (enforce SSE-KMS)

backfilled logs for account 111111111111 (6.9M records)

updated vector index threat-intel-dev (segment merge)

backfilled logs for account 111111111111 (2.3M records)

approved remediation playbook for open security groups

updated vector index threat-intel-dev (segment merge)

updated S3 bucket encryption policy (enforce SSE-KMS)

created dashboard “Executive Overview”

rotated KMS key alias/service-x

updated vector index threat-intel-dev (segment merge)

granted temporary access to audit role (1h)

created dashboard “Executive Overview”

published new threat bulletin (CVE-2025-5643)

backfilled logs for account 111111111111 (7.0M records)

updated S3 bucket encryption policy (enforce SSE-KMS)

scheduled inspector scan for dev-fleet (critical packages)

granted temporary access to audit role (1h)

initiated attack simulation against WebApp-Dev (OWASP Top 10)

backfilled logs for account 111111111111 (4.4M records)

created dashboard “Executive Overview”

published new threat bulletin (CVE-2025-4438)

initiated attack simulation against WebApp-Dev (OWASP Top 10)

backfilled logs for account 111111111111 (3.9M records)

rotated KMS key alias/service-x

applied new WAF rule set (rate limiting enabled)

ingested threat intel feed from AlienVault OTX (581 indicators)

updated S3 bucket encryption policy (enforce SSE-KMS)