Lambda function that exposes secrets is reached from malicious IP address - Complete Cloud Security in Minutes - Orca Security

Suspicious activity

Lambda function that exposes secrets is reached from malicious IP address

Risk Level

Hazardous (3)

Platform(s)

N/A

Description

AWS lambda function {AwsLambdaFunction} was detected with environment variables exposing AWS access key or secret. Lambda function is reached from Malicious IP address.

Recommended Mitigation

Review your Lambda functions and make sure they do not contain secrets. We recommend to store AWS secrets in dedicated services like Secrets Manager or Parameter Store, or encrypt the environment variables with a dedicated KMS key.

See Orca in action

See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.