Deleting a compromised AWS Access Key isn't sufficient(blog.redlock.io)
blog.redlock.io
Deleting a compromised AWS Access Key isn't sufficient
https://blog.redlock.io/aws-access-key-security-best-practices
2 comments
You can review the logs in the CloudTrail https://aws.amazon.com/cloudtrail/
I don't use AWS often. Does AWS provide a way to receive notifications when AWS STS commands are run? Or do some admins setup syslogging to capture these events?