Select Reports > Portal > Repository > Standard Content > Cloud > CSA > The Treacherous 12.
Malicious users can exploit poorly secured cloud service deployments, free cloud service trials, and fraudulent account sign-ups, which expose cloud computing models such as Iaas, PaaS, and SaaS. You might experience denial of service attacks, email spam and phishing campaigns, and brute-force computing attacks, or malicious individuals spoofing identities.
Some charts display data reported by Amazon GuardDuty, which is a threat detection service that continuously watches for malicious activity and unauthorized behavior.
To search for potential threats, use the following dashboards:
Helps you identify denial of services activities that arise from EC2 (AWS Elastic Compute Cloud service) instances. The charts and table show events summarized by their Amazon resource name, severity, and GuardDuty.
Displays EC2 instances that communicates with cryptocurrency IP addresses or domains.
Lists the EC2 instances in which querying domains are involved in phishing attacks.
Lists the EC2 machines that are involved in suspicious communication.
Identifies email spam that originates from EC2 instances.
Displays events that Amazon GuardDuty reports as nefarious activity by an unauthorized individual from EC2 machines. Amazon GuardDuty a threat detection service that continuously watches for malicious activity and unauthorized behavior.
Lists suspicious activity reported by Microsoft Azure.
Lists backdoors or trojans discovered on EC2 machines.