Glossary

AWS CloudTrail

CloudTrail is AWS security camera - it records every action taken in your AWS account so you can see what happened.

What is AWS CloudTrail?

AWS service that logs API calls and account activity for governance, compliance, and security auditing.

Why Should You Care?

CloudTrail is essential for AWS security. Without it, you have no visibility into who is doing what in your account.

Is your business exposed?

Real-World Example

CloudTrail reveals that an IAM user created unauthorized EC2 instances for cryptocurrency mining.

How to Protect Against AWS CloudTrail

  1. 1.

    Enable CloudTrail in all AWS regions

  2. 2.

    Enable CloudTrail log file integrity validation

Related Terms

Aws, Logging, Audit

Is your business exposed?

Check if your company data is circulating on the dark web

Free scan • No credit card required

Privacy PolicyYour Privacy Choices