AWS GuardDuty detects InstanceCredentialExfiltration.OutsideAWS against connector
- Views:
- 70
- Visibility:
- Public
- Votes:
- 0
- Category:
- cloud-manager
- Specialty:
- bluexp
- Last Updated:
- 10/3/2024, 11:30:20 PM
Applies to
BlueXP (Connector)
Amazon GuardDuty
Issue
Amazon GuardDuty reports an alert:
The event "UnauthorizedAccess:IAMUser/InstanceCredentialExfiltration.OutsideAWS" was performed by netapp-bluexp-connector-role on Sep 20, 2024, 11:19 AM and was initiated from <IP Address>
on the BlueXP instance.