Tag
high
advisory
Sensitive Data Exposure in AWS Bedrock Claude Prompts
1 rule 2 TTPsThis detection identifies instances where sensitive data, including social security numbers, passwords, API keys, and credit card numbers, is inadvertently or maliciously sent within prompts to AWS Bedrock Claude AI models, indicating potential data loss, credential leakage, or insider threat activity.
AWS Bedrock Claude
aws
bedrock
claude
data-exposure
insider-threat
cloud
application
anomaly
1r
2t
high
advisory
AWS Bedrock Claude High Risk Filesystem and Exec Tool Invocation
1 rule 5 TTPsDetection identifies anomalous or high-risk usage of filesystem and execution tools (such as bash, curl, edit, write, webfetch, grep, read, read_file) invoked by an identity through AWS Bedrock Claude, flagging suspicious activity that could indicate attempts to escalate privileges, exfiltrate data, execute unauthorized commands, or establish persistence.
AWS Bedrock Claude
cloud-security
ai
aws
insider-threat
privilege-escalation
data-exfiltration
1r
5t