Detect malware in new object uploads to HAQM S3 with HAQM GuardDuty
Today, HAQM Web Services (AWS) announces the general availability of HAQM GuardDuty Malware Protection for HAQM S3. This expansion of GuardDuty Malware Protection allows you to scan newly uploaded objects to HAQM S3 buckets for potential malware, viruses, and other suspicious uploads and take action to isolate them before they are ingested into downstream processes.
GuardDuty helps customers protect millions of HAQM S3 buckets and AWS accounts. GuardDuty Malware Protection for HAQM S3 is fully managed by AWS, alleviating the operational complexity and overhead that normally comes with managing a data-scanning pipeline, with compute infrastructure operated on your behalf. This feature also gives application owners more control over the security of their organization’s S3 buckets; they can enable GuardDuty Malware Protection for S3 even if core GuardDuty is not enabled in the account. Application owners are automatically notified of the scan results using HAQM EventBridge to build downstream workflows, such as isolation to a quarantine bucket, or define bucket policies using tags that prevent users or applications from accessing certain objects.
GuardDuty Malware Protection for HAQM S3 is available in all AWS Regions where GuardDuty is available, excluding China Regions and GovCloud (US) Regions. This feature has a Free Tier for a limited time; visit the GuardDuty pricing page for more information on the Free Tier or to get started with GuardDuty. To learn more about GuardDuty Malware Protection for HAQM S3, read the AWS News Blog.