Identifying Data Exfiltration in AWS CloudTrail Logs Using Categorical Anomaly Detection

In our previous blog, Identifying stolen credential use in AWS CloudTrail logs with high confidence using categorical anomaly detection, we discussed the “False-positive reducing” power of analyzing the categorical data in AWS CloudTrail logs to identify novel behaviors. We...