Home Innovation Security AWS Reveals Mithra: A Powerful...

AWS Reveals Mithra: A Powerful Tool for Detecting Malicious Domains

Security

Business Honor
13 August, 2024

AWS also integrates Mithra’s data into its Amazon GuardDuty threat detection service, enhancing its ability to monitor and protect cloud environments

Amazon Web Services Inc. has unveiled Mithra, its advanced internal system designed to identify and combat malicious website domains. Mithra, named after the ancient Persian deity of justice, averages the detection of 182,000 malicious domains daily. This tool is crucial for safeguarding AWS customers from harmful web traffic and detecting cyberattacks targeting both AWS clients and non-customers.

Malicious domains are frequently used in phishing attacks, malware distribution, and other cyber threats. Mithra's role in identifying these domains promptly helps prevent potential breaches. The system draws data from AWS's MadPot honeypot network, which lures cyberattacks by simulating vulnerable business documents. Analyzing these attacks aids in crafting defenses against similar threats. Mithra aggregates threat intelligence into a vast graph structure, managing 3.5 billion nodes and 48 billion edges. This complex system links malicious domains to their associated hacking groups, providing critical insights into cyberattack patterns. AWS also integrates Mithra’s data into its Amazon GuardDuty threat detection service, enhancing its ability to monitor and protect cloud environments.

In addition to protecting its own customers, AWS uses Mithra to alert non-customers about potential compromises. This proactive approach aims to prevent further exploitation and promotes overall internet safety. AWS often provides actionable remediation advice, such as moving vulnerable workloads behind firewalls, to help organizations mitigate threats. Through Mithra, AWS not only fortifies its security measures but also contributes to a safer digital landscape by sharing valuable threat intelligence.