1. Using Oracle CASB Cloud Service
  2. Monitoring Cloud Applications
  3. Managing Behavioral Anomalies and Threats
  4. Detecting Application-Specific Threats
  5. Detecting Threats in AWS

Detecting Threats in AWS

Understand Oracle CASB Cloud Service threat detection features for AWS.

As described in Managing Behavioral Anomalies and Threats, Oracle CASB Cloud Service detects behaviors that indicate an insider or external threat. For example, access from a suspicious IP address, excessive mass transfers and deletes of sales data, or a user hopping between IP addresses and geographical locations are all detected.

Threat detection can alert you, for example, when an AWS user has a suspicious number of failed logins (suggesting a brute force attack) or appears to be accessing their AWS account from an anonymizing proxy.