AWS GuardDuty detects suspicious traffic from instance with db service or PII

Suspicious activity

AWS GuardDuty detects suspicious traffic from instance with db service or PII

Risk Level

Hazardous (3)

Platform(s)

Compliance Frameworks

Brazilian General Data Protection (LGPD)
CCM-CSA
CCPA
cis_8
coppa
CPRA
Data Security Posture Management (DSPM) Best Practices
GDPR
HITRUST
ISO/IEC 27001
Mitre ATT&CK
New Zealand Information Security Manual
NIST 800-171
NIST 800-190
NIST 800-53
PDPA
UK Cyber Essentials

Description

Suspicious traffic was found by AWS GuardDuty service on EC2 instance {AwsEc2Instance} ({AwsEc2Instance.InstanceId}) and Orca detected PII on the asset. AWS GuardDuty is a threat detection service that continuously monitors your AWS accounts and workloads for malicious activity. The service detected one of the following types of suspicious network: (Trojan:EC2/DNSDataExfiltration, Behavior:EC2/NetworkPortUnusual, Behavior:EC2/TrafficVolumeUnusual).

AWS GuardDuty detects suspicious traffic from instance with db service or PII

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS