Suspicious activity

An IAM entity invoked an S3 API that attempts to delete data in a suspicious way

Platform(s)
Compliance Frameworks

Description

GuardDuty finding was triggered for s3 bucket.
  • Recommended Mitigation

    Harden the bucket's permissions and restrict malicious access by removing permissions for the IAM entity which invoked the API call.