Suspicious activity

Lambda function that exposes secrets is reached from malicious IP address

Risk Level

Hazardous (3)

Platform(s)
  • N/A

Description

AWS lambda function {AwsLambdaFunction} was detected with environment variables exposing AWS access key or secret. Lambda function is reached from Malicious IP address.
  • Recommended Mitigation

    Review your Lambda functions and make sure they do not contain secrets. We recommend to store AWS secrets in dedicated services like Secrets Manager or Parameter Store, or encrypt the environment variables with a dedicated KMS key.