You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Administrative changes to the Alibaba Secrets Manager aren't overtly hostile, but are generally low volume and can be considered sensitive. These signals highlight when these actions occur and can be used in context of other suspicious activity to raise the risk of a hostile entity. Several Secrets Manager API actions are included and assessed as sensitive.
Additional Details
Detail
Value
Type
Templated Match
Category
Unknown/Other
Apply Risk to Entities
user_username, srcDevice_ip
Signal Name
Alibaba ActionTrail Secrets Manager Activity
Summary Expression
User: {{user_username}} from source IP: {{srcDevice_ip}} performed a {{action}} action