数据库威胁发现结果

Security Command Center 会分析各种日志,以发现影响数据库的潜在威胁。Event Threat Detection 支持以下基于日志的检测:

  • Credential Access: CloudDB Failed login from Anonymizing Proxy IP
  • Exfiltration: Cloud SQL Data Exfiltration
  • Exfiltration: Cloud SQL Over-Privileged Grant
  • Exfiltration: Cloud SQL Restore Backup to External Organization
  • Initial Access: CloudDB Successful login from Anonymizing Proxy IP
  • Initial Access: Database Superuser Writes to User Tables
  • Privilege Escalation: AlloyDB Database Superuser Writes to User Tables
  • Privilege Escalation: AlloyDB Over-Privileged Grant

    • 后续步骤