Amazon GuardDuty Malware Protection for AWS Backup supports Amazon S3 continuous backups
Amazon Web Services has expanded its GuardDuty Malware Protection service to support Amazon S3 continuous backups, enabling organizations to scan their backup data for malware and identify clean recovery points across their entire backup timeline. The enhanced service allows users to configure full or incremental malware scans within their backup plans and perform on-demand scans up to any restorable point in time through the AWS Backup console, API, or CLI. The new capability introduces the GetPITRMalwareScanResults API, which allows administrators to query malware scan status at any specific point in time within their continuous backup. This functionality enables teams to verify whether a particular recovery time is clean before initiating a restore operation, providing an additional layer of security validation in disaster recovery scenarios. The feature is now available in all AWS regions where GuardDuty Malware Protection for AWS Backup is currently supported.
Why It Matters
This enhancement addresses a critical gap in backup security by ensuring that restored data doesn't reintroduce malware into clean environments. As ransomware attacks increasingly target backup systems, the ability to verify backup integrity before restoration becomes essential for enterprise security strategies. The point-in-time scanning capability gives organizations confidence in their recovery processes and helps prevent the inadvertent restoration of compromised data.
This summary is generated using AI analysis of the original press release. Always refer to the original source for complete details.