Orca Security, Author at Orca Security

SSL Certificate Using 1024 Bit Encryption Key

SSL Certificate Using 1024 Bit Encryption Key

Ensure SSL/TLS Certificates are Using 2048/4096 Bit Encryption Keys

Orca Security

Jun 06, 2023

KMS master key rotation disabled

It was found that {AwsKmsKey} could not be rotated. Ensure KMS key rotation feature is enabled for all your Customer...

Orca Security

Jun 06, 2023

AWS Secrets Manager secret was not rotated in the last 90 days

AWS Secrets Manager secret was not rotated in the last 90 days

AWS Secrets Manager helps you to store and protect secrets needed to access your applications, services, and IT resources. We...

Orca Security

Jun 06, 2023

Project with API keys

API keys are used for authentication, they are simple encrypted strings that identify an application without any principal. Project '{CloudAccount}'...

Orca Security

Jun 06, 2023

API key was not rotated in 90 days

API keys are used for authentication, they are simple encrypted strings that identify an application without any principal. API key...

Orca Security

Jun 06, 2023

API key is not restricted to APIs

API keys are used for authentication, they are simple encrypted strings that identify an application without any principal. API key...

Orca Security

Jun 06, 2023

AWS GuardDuty detects suspicious traffic from an instance with malware

AWS GuardDuty detects suspicious traffic from an instance with malware

Suspicious traffic was found by AWS GuardDuty service on EC2 instance {AwsEc2Instance} ({AwsEc2Instance.InstanceId}) detected with malware by Orca. AWS GuardDuty...

Orca Security

May 16, 2023

AWS GuardDuty detects RDP brute force attempts on an exposed unpatched Windows instance

AWS GuardDuty detects RDP brute force attempts on an exposed unpatched Windows instance

Brute force attempts were detected by AWS GuardDuty service on the Internet facing Unpatched Windows EC2 instance {AwsEc2Instance} ({AwsEc2Instance.InstanceId}). AWS...

Orca Security

May 16, 2023

S3 Bucket with Policy:S3/BucketBlockPublicAccessDisabled GuardDuty Alert Found

S3 Bucket with Policy:S3/BucketBlockPublicAccessDisabled GuardDuty Alert Found

GuardDuty finding was triggered for s3 bucket. It was found that the 'BucketBlockPublicAccessDisabled' feature was disabled for {AwsS3Bucket} bucket. This...

Orca Security

May 16, 2023

All articles by Orca Security

SSL Certificate Using 1024 Bit Encryption Key

KMS master key rotation disabled

AWS Secrets Manager secret was not rotated in the last 90 days

Project with API keys

API key was not rotated in 90 days

API key is not restricted to APIs

AWS GuardDuty detects suspicious traffic from an instance with malware

AWS GuardDuty detects RDP brute force attempts on an exposed unpatched Windows instance

S3 Bucket with Policy:S3/BucketBlockPublicAccessDisabled GuardDuty Alert Found

See Orca Security in Action

See Orca Security in Action

Cloud Security Platform

Technology Ecosystem

By Solution

By Industry

Comparisons