- Q: Why should I use Spotlight?
- A: Eearly detection of cyber-attacks is crucial to minimizing the potential damage of such attacks. Unfortunately, we can see a rise in the number of organizations that suffer from cyber-attacks agianst thier cloud infrastructure. Most of these attacks are made possible due to some type of a mistake. A mistake taken by a member of your devops team, your r&d team or some other team member. working in the cloud meaning working fast and continuously change, thus an error is inevatible. Spotlight helps with detecting such events while there is enough time to response and mitigate.
- Q: What are Spotlight's benefits?
- A: Spotlight Spotlight is designed to improve detection and provide visibility into common attacks tactics that are used by attackers. When simulating attacks we utilize attacks tools that are available in the internet, spotlight is designed to look for the footprints’ patterns these tools leave. Once such a pattern is detected, spotlight generates a meaningful alert that comprises AWS user name, source IP, time of event and description of the attack pattern.
- Q: How much does Spotlight cost?
- A: Spotlight is currently in Beta phase and it absolutely free. All features avilavable in the Beta version will remain free in the future as well
- Q: How does it work?
- A: Our product is powered by a complex algorithm which efficiently anlayze cloudtrails log and detect malicious activity. Spotlight create a standard cloudtrail log for your AWS environment and an athena table that can query this log file. Spotlight then assume a specific role with permissions to your athena table, analyze the log and raise alerts when a suspicious activity is detected.
- Q: How do I start working with Spotlight?
- A: There is a very simple and straight forward registartion process. Once registered you are recived a cloudformation template and a specific s3 bucket to use. After running the cloudformation template you recieve an IAM role, you need to provide this role arn to spotlight in order to acivate your account.
- Q: How do I cancel my registartion?
- A: Tap the “Cancel Ryde” button in the Wild Rydes app.
- Q: Do you provide proffesional services?
- A: Yes, Komodo is an Amazon partner that specializes in cloud security. We provide both consulting services for designing secure cloud infrastructure as well as validation services to make sure all securty settings are intact and no security holes remain unnoticed.
- Q: Where do I find my AWS account ID?
- A: Login into your AWS console. Choose 'Support Center' under support menu on the upper right corner. Now on the upper left you will see your account number.