Amazon GuardDuty EC2 Runtime Monitoring is now generally available

Publicada el marzo 29, 2024 por Stack Over Cloud

Amazon GuardDuty is a machine learning (ML)-based security monitoring and intelligent threat detection service that analyzes and processes various AWS data sources, continuously monitors your AWS accounts and workloads for malicious activity, and delivers detailed security findings for visibility and remediation. I love the feature of GuardDuty Runtime Monitoring that analyzes operating system (OS)-level, network, Read more about Amazon GuardDuty EC2 Runtime Monitoring is now generally available[…]

AWS Weekly Roundup — AWS Control Tower new API, TLS 1.3 with API Gateway, Private Marketplace Catalogs, and more — February 19, 2024

Publicada el febrero 19, 2024 por Stack Over Cloud

Over the past week, our service teams have continued to innovate on your behalf, and a lot has happened in the Amazon Web Services (AWS) universe that I want to tell you about. I’ll also share about all the AWS Community events and initiatives that are happening around the world. Let’s dive in! Last week’s Read more about AWS Weekly Roundup — AWS Control Tower new API, TLS 1.3 with API Gateway, Private Marketplace Catalogs, and more — February 19, 2024[…]

New – Simplify the Investigation of AWS Security Findings with Amazon Detective

Publicada el mayo 18, 2023 por Stack Over Cloud

With Amazon Detective, you can analyze and visualize security data to investigate potential security issues. Detective collects and analyzes events that describe IP traffic, AWS management operations, and malicious or unauthorized activity from AWS CloudTrail logs, Amazon Virtual Private Cloud (Amazon VPC) Flow Logs, Amazon GuardDuty findings, and, since last year, Amazon Elastic Kubernetes Service Read more about New – Simplify the Investigation of AWS Security Findings with Amazon Detective[…]

Amazon GuardDuty Now Supports Amazon EKS Runtime Monitoring

Publicada el marzo 30, 2023 por Stack Over Cloud

Since Amazon GuardDuty launched in 2017, GuardDuty has been capable of analyzing tens of billions of events per minute across multiple AWS data sources, such as AWS CloudTrail event logs, Amazon Virtual Private Cloud (Amazon VPC) Flow Logs, and DNS query logs, Amazon Simple Storage Service (Amazon S3) data plane events, Amazon Elastic Kubernetes Service Read more about Amazon GuardDuty Now Supports Amazon EKS Runtime Monitoring[…]

AWS Week in Review – March 20, 2023

Publicada el marzo 21, 2023 por Stack Over Cloud

This post is part of our Week in Review series. Check back each week for a quick roundup of interesting news and announcements from AWS! A new week starts, and Spring is almost here! If you’re curious about AWS news from the previous seven days, I got you covered. Last Week’s Launches Here are the Read more about AWS Week in Review – March 20, 2023[…]

AWS Week in Review – August 1, 2022

Publicada el agosto 1, 2022 por Stack Over Cloud

AWS re:Inforce returned to Boston last week, kicking off with a keynote from Amazon Chief Security Officer Steve Schmidt and AWS Chief Information Security officer C.J. Moses: Be sure to take some time to watch this video and the other leadership sessions, and to use what you learn to take some proactive steps to improve Read more about AWS Week in Review – August 1, 2022[…]

New for Amazon GuardDuty – Malware Detection for Amazon EBS Volumes

Publicada el julio 26, 2022 por Stack Over Cloud

With Amazon GuardDuty, you can monitor your AWS accounts and workloads to detect malicious activity. Today, we are adding to GuardDuty the capability to detect malware. Malware is malicious software that is used to compromise workloads, repurpose resources, or gain unauthorized access to data. When you have GuardDuty Malware Protection enabled, a malware scan is Read more about New for Amazon GuardDuty – Malware Detection for Amazon EBS Volumes[…]

Amazon Detective Supports Kubernetes Workloads on Amazon EKS for Security Investigations

Publicada el julio 26, 2022 por Stack Over Cloud

In March 2020, we introduced Amazon Detective, a fully managed service that makes it easy to analyze, investigate, and quickly identify the root cause of potential security issues or suspicious activities. Amazon Detective continuously extracts temporal events such as login attempts, API calls, and network traffic from Amazon GuardDuty, AWS CloudTrail, and Amazon Virtual Private Cloud (Amazon VPC) Read more about Amazon Detective Supports Kubernetes Workloads on Amazon EKS for Security Investigations[…]

Amazon GuardDuty Enhances Detection of EC2 Instance Credential Exfiltration

Publicada el enero 21, 2022 por Stack Over Cloud

Amazon GuardDuty is a threat detection service that continuously monitors for malicious activity and unauthorized behavior to protect your AWS accounts, workloads, and data stored in Amazon Simple Storage Service (Amazon S3). Informed by a multitude of public and AWS-generated data feeds and powered by machine learning, GuardDuty analyzes billions of events in pursuit of Read more about Amazon GuardDuty Enhances Detection of EC2 Instance Credential Exfiltration[…]

New – Using Amazon GuardDuty to Protect Your S3 Buckets

Publicada el julio 31, 2020 por Stack Over Cloud

As we anticipated in this post, the anomaly and threat detection for Amazon Simple Storage Service (S3) activities that was previously available in Amazon Macie has now been enhanced and reduced in cost by over 80% as part of Amazon GuardDuty. This expands GuardDuty threat detection coverage beyond workloads and AWS accounts to also help you protect your Read more about New – Using Amazon GuardDuty to Protect Your S3 Buckets[…]