Hand-curated research, tooling, and incidents from across the cloud security landscape. Distilled by a practitioner, read by twelve thousand engineers, CISOs, and founders.
Every link gets read by me before it makes the issue. No RSS firehose, no AI summary slop. Just a practitioner choosing what's worth your time.
You'll get comprehensive coverage, including the latest cloud security research, technical deep dives, tools, major updates from cloud providers, and service updates/releases.
Our readers come from different backgrounds and are distributed across the globe. They vary from hands-on security professionals working as security engineers or SOC analysts, to security managers, heads of security, CISOs, CSOs, security founders, senior leaders, and VCs.
Every CloudSecList issue and every CloudSecDocs page is searchable in plain English. Find that runtime detection paper from two years ago, the OIDC misconfiguration write-up, the right open-source scanner. Without scrolling.
Try Ask AI →For those wanting a summary of cloud security news, I strongly recommend CloudSecList by @lancinimarco. He surfaces lots of links I had not seen, all high quality, and does a great job summarizing them.
“If you're not getting the CloudSecList email digest every Sunday, you're missing out.”
“After reading for several weeks: CloudSecList by @lancinimarco is an *excellent* source for Cloud Security News!”
“If you are in InfoSec and you deal with cloud or k8s, and you're not subscribed to CloudSecList you are doing yourself a disservice.”
“If you're into cloud security, this is easily the best newsletter.”
“I joined the weekly CloudSecList newsletter in early 2021, and I love it! If you're into cloud security, you want to take advantage of it.”
“CloudSecList is a pretty nice read on Sundays / Monday mornings. Good summaries, links to tools — reminds me of the old SummitRoute emails.”
“Have you checked out the latest CloudSecList newsletter by @lancinimarco? I totally recommend a subscription - todays news collection is again an absolute blast!”
“Most newsletters sit unread in your inbox; some you look forward to reading. CloudSecList, thoughtfully curated by Marco, is top notch — always relevant and high quality.”
“CloudSecList's latest newsletter is 🔥. Marco curates the most cloud security relevant stuff in this newsletter.”
unsubscribe link. Simply click on it and follow the instructions to remove yourself from the mailing list.CloudSecList takes the privacy of readers very seriously. There is a conscious effort NOT to collect additional information about the CloudSecList readership outside of an email address (which, of course, will NOT be shared with advertisers, ever). In addition, CloudSecList does not track individual open and click rates, but only the global (and anonymized) ones.
For more information, you can refer to CloudSecList's Privacy Policy.