How AWS tracks the cloud’s biggest security threats and helps shut them down
Security Blog
This article discusses how AWS tracks and shuts down major security threats to its cloud infrastructure and customers using its advanced threat intelligence capabilities.
Specifically, the article covers:
- AWS's ability to leverage its massive global scale to gather high-fidelity threat intelligence from over 100 million events observed daily using tools like MadPot honeypots.
- Mithra, AWS's neural network model with 3.5 billion nodes that can detect and rank over 182,000 new malicious domains per day.
- How AWS shares its threat intelligence to proactively notify customers and other organizations of potential threats or compromises, helping them take mitigating actions.
- Three real-world examples of AWS threat intelligence in action, including thwarting data exfiltration, detecting exploitation of zero-day vulnerabilities, and protecting against Russian cyber threat actors.
- Conclusion emphasizing AWS's commitment to leveraging its unparalleled visibility to help secure customers and the broader internet.
The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.
Related articles
Oct 10
2024
2024
How AWS uses active defense to help protect customers from security threats
Jun 17
2025
2025
New AWS Shield feature discovers network security issues before they can be exploited (Preview)
Mar 11
2026
2026
Strengthening application security: How Detectify and AWS help enterprises control their attack surface
Feb 16
2024
2024
Enhance your AWS cloud infrastructure security with AWS Managed Services (AMS)
The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.