Posted On: Apr 20, 2023
Amazon GuardDuty expands threat detection coverage to continuously monitor network activity logs, starting with VPC Flow Logs, generated from the execution of AWS Lambda functions to detect threats to Lambda such as functions maliciously repurposed for unauthorized cryptocurrency mining, or compromised Lambda functions that are communicating with known threat actor servers. GuardDuty Lambda Protection can be enabled with a few steps in the GuardDuty console, and using AWS Organizations, can be centrally enabled for all existing and new accounts in an organization.
Customers across many industries and geographies use Amazon GuardDuty, including more than 90% of AWS’s 2,000 largest customers. GuardDuty is a threat detection service that continuously monitors your AWS accounts and workloads for malicious activity and delivers detailed security findings for visibility and remediation. With GuardDuty Lambda Protection, you can now continuously monitor your Lambda execution environment without any configuration changes to the existing Lambda functions or new Lambda functions that are added. Current and new GuardDuty users can try GuardDuty Lambda Protection at no cost with a 30-day free trial.
To learn more and get started:
- Try it for 30 days on the AWS Free Tier
- Refer to the documentation to learn about the new finding types available and for Region-specific feature availability.
- Get updates on new features and threat detections with the Amazon GuardDuty SNS topic