AWS ups security for Elastic Block Store, Kubernetes service

2022-07-27 17:00

Amazon's cloud platform is extending security capabilities for a couple of its widely used services; Amazon Elastic Block Store and Amazon Elastic Kubernetes Service.

Amazon GuardDuty is described as a threat detection service that can continuously monitor AWS accounts and workloads for malicious activity, and can initiate automated responses.

When a malware scan is initiated, GuardDuty will actually take a snapshot of any Amazon Elastic Block Store volumes attached to a suspect EC2 instance that are less than 1TB in size, and then scan the snapshot for malware.

Amazon GuardDuty Malware Protection is available in most AWS Regions where GuardDuty is available with a few exceptions.

Amazon Detective is a fully managed service intended to analyze and identify the root cause of potential security issues or suspicious activities.

The updated capabilities in Amazon Detective now expand its security investigation coverage to workloads running in containers under Amazon EKS. According to Amazon, Detective will automatically start ingesting EKS audit logs to capture API activity from users, applications, and the Kubernetes control plane in Amazon EKS once enabled by a customer.

News URL

https://go.theregister.com/feed/www.theregister.com/2022/07/27/aws_security_elastic/

#AWS #kubernetes #security #UPS

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Elastic		29	11	103	24	5	143
Kubernetes		18	12	49	23	5	89