Source: aws.amazon.com
New for Amazon GuardDuty – Malware Detection for Amazon EBS Volumes
https://aws.amazon.com/polly/ With https://aws.amazon.com/guardduty/, you can monitor your AWS accounts and workloads to detect malicious activity. Malware is malicious software that is used to compromise workloads, repurpose resources, or gain unauthorized access to data.
When a malware scan is initiated for an EC2 instance, GuardDuty Malware Protection uses those permissions to take a snapshot of the attached https://aws.amazon.com/ebs/ volumes that are less than 1 TB in size and then restore the EBS volumes in an AWS service account in the same https://aws.amazon.com/about-aws/global-infrastructure/regions_az/#Regions to scan them for malware.
The EBS volumes in the service account and the snapshots in your account are deleted after the scan.
Enabling Malware Protection for an AWS Account If you’re not using GuardDuty yet, Malware Protection is enabled by default when you activate GuardDuty for your account.
When a malware scan is initiated for an EC2 instance, GuardDuty Malware Protection uses those permissions to take a snapshot of the attached https://aws.amazon.com/ebs/ volumes that are less than 1 TB in size and then restore the EBS volumes in an AWS service account in the same https://aws.amazon.com/about-aws/global-infrastructure/regions_az/#Regions to scan them for malware.
The EBS volumes in the service account and the snapshots in your account are deleted after the scan.
Enabling Malware Protection for an AWS Account If you’re not using GuardDuty yet, Malware Protection is enabled by default when you activate GuardDuty for your account.
Related Articles
Community Partners
DevOps Careers