Suspicious activity

Exposed AWS key

Risk Level

Informational (4)

  • N/A


Orca detected an AWS key was exposed. AWS proactively monitors popular code repository sites for exposed AWS Identity and Access Management (IAM) access keys. On detection of an exposed IAM access key, a policy named 'AWSExposedCredentialPolicy_DO_NOT_REMOVE' is assigned to the IAM user in order to notify on the leaked access key. A login profile is created when you create a password for the IAM user to access the Amazon Web Services Management Console. Thus, by creating a new login profile for an existing IAM user, it allows to access the Amazon Web Services Management Console with the user's level of access.
  • Recommended Mitigation

    It is recommended to rotate the exposed AWS access key immediately.