Posted On: Jun 3, 2022
Amazon GuardDuty EKS Protection, an Amazon GuardDuty feature, continuously monitors and profiles Amazon Elastic Kubernetes Service (Amazon EKS) cluster activity to identify malicious or suspicious behavior that represents potential threats to container workloads, is now available in the AWS Asia Pacific (Jakarta) Region.
Available globally, Amazon GuardDuty continuously monitors for malicious or unauthorized behavior to help protect your AWS resources, including your AWS accounts, access keys, data stored in Amazon S3, and workloads on Amazon Elastic Kubernetes Service (Amazon EKS). GuardDuty can identify unusual or unauthorized activity like crypto-currency mining, access to data stores in S3 from unusual locations, infrastructure deployments in a region that has never been used, and detect threats related to user and application activity captured in Kubernetes audit logs. GuardDuty continually evolves its techniques to identify indicators of compromise, such as updating machine learning (ML) models, adding new anomaly detections, and growing integrated threat intelligence to identify and prioritize potential threats. You can learn more by reading the blog, How to use new Amazon GuardDuty EKS Protection findings.
The first 30 days of GuardDuty EKS Protection are available at no additional charge for existing GuardDuty accounts. For new accounts, GuardDuty EKS Protection is part of the 30-day Amazon GuardDuty free trial. During the trial period you can see the estimated cost of running the service after the trial period ends in the GuardDuty Management Console. GuardDuty optimizes your costs by only processing logs relevant for analysis. To receive programmatic updates on new Amazon GuardDuty features and threat detections, subscribe to the Amazon GuardDuty SNS topic.