highexperimentalLinuxOCIT1552.001

Linux Agent Reading Cloud Credentials Beyond OCI

Detects AI agent processes accessing credential files for cloud providers other than OCI (AWS, Azure, GCP), which may indicate multi-cloud credential harvesting.

Updated Jan 10, 2025 · OCI AI Security Team

agentic-aicredential-accessmulti-cloudidentity-abuselinuxociowasp-asi03

Problem Statement

OCI-hosted AI agents with access to AWS, Azure, or GCP credentials can pivot across cloud providers, dramatically expanding the blast radius of a compromise. Detection of cross-cloud credential access is critical for containing multi-cloud identity breaches.

Sample Logs

{"timestamp":"2025-01-10T14:00:05Z","computer_name":"oci-worker-13","user":"agent_svc","image":"/usr/bin/python3","target_filename":"/home/agent_svc/.aws/credentials","access_type":"read"}

Required Fields

image

target_filename

user

computer_name

False Positives

·Multi-cloud integration agents that legitimately authenticate to AWS or Azure as part of approved cross-cloud workflows

Tuning Guidance

Validate whether the agent's design specification includes multi-cloud operations. Alert on any access to non-OCI credential files from agents that are not explicitly authorized for cross-cloud operations.