Suspicious activity

Create snapshot API call was made from malicious IP address

Platform(s)

Description

Orca detected a CreateSnapshot operation attempt. The operation was called from a malicious IP address - {MaliciousIp.MaliciousIp}, which might indicate of an exfiltration attempt. An attacker with permissions to create snapshots can expose sensitive data using snapshots creation. There snapshots can be shared between different AWS accounts.
Need help?

Get a free Security Risk Assessment. Start today

A screenshot of the Orca Platform's Executive Risk Summary dashboard

Personalized Demo

See Orca Security in Action

Gain visibility, achieve compliance, and prioritize risks with the Orca Cloud Security Platform.

Get a Demo
A screenshot of the Orca Platform's Executive Risk Summary dashboard

Chat with Us

See Orca Security in Action

Gain visibility, achieve compliance, and prioritize risks with the Orca Cloud Security Platform.

Chat with an Orca Expert

No Slack account required.