Stop compute instance API call was made from a malicious IP address - Complete Cloud Security in Minutes - Orca Security

Suspicious activity

Stop compute instance API call was made from a malicious IP address

Risk Level

Informational (4)

Platform(s)

N/A

Description

Orca detected that an API call to stop compute instance was made from a malicious IP address. This action may indicate of a presence of an unauthorized actor in the cloud environment, since stopping compute instance API call was sourced from a malicious IP address.

Recommended Mitigation

It is recommended to review relevant Audit Log event, the compute instance and the principal's activity that issued this API call.

See Orca in action

See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.