Suspicious activity

EKS Cluster with DefenseEvasion:Kubernetes/TorIPCaller GuardDuty Alert Found

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

An API was invoked from a Tor exit node IP address.
  • Recommended Mitigation

    It is recommended to restrict the access to the cluster and attend any additional alerts linked to it.