Trojan:EC2/BlackholeTraffic!DNS on AL Threat Mgr instance in AWS.
We have a large number of incidents being raised in GuardDuty against our AutoScaling Group of our Alert Logic Agent.
Searched the Security Groups and nACLs to confirm everything is ok - but getting a large number of alerts each day.
Has anyone experienced this before? Is it a risk? Do I need to delete/re-install the agent?
-
Official comment
Thanks for posting, Ian! I've moved this into our Discussions section in the hopes that your fellow customers have similar experiences and can give you some insight. If nothing comes through, we'll make sure someone from our Support team helps you out.
-
Ian - our Support team needs more information from you in order to best assist you with this issue, so I'm opening a ticket for you. Please let me know if you need anything else once Support has been able to help you!
0
Please sign in to leave a comment.
Comments
2 comments