This article introduces Amazon GuardDuty Malware Protection for Amazon S3, a new feature that allows continuous scanning of new objects uploaded to designated S3 buckets for potential malware threats. It uses AWS-developed and third-party malware scanning engines to detect malicious files without affecting the performance of Amazon S3.

Specifically, the article covers:

• How to enable and configure Malware Protection for S3 buckets in the GuardDuty console
• Required IAM permissions and policies for the feature to access S3 objects and services
• Details on how GuardDuty scans and tags S3 objects based on the scan results
• Monitoring and remediation options for detected malware threats
• Availability, pricing, and resources for getting started with the new feature