AWS Security ChangesHomeSearch

AWS guardduty documentation change

Service: guardduty · 2026-05-16 · Documentation medium

File: guardduty/latest/ug/securityhub-integration.md

Summary

Added new finding type mapping: Execution:Runtime/MaliciousFileExecuted.Custom

Security assessment

Documents integration of a new runtime detection capability for malicious file executions. While security-related, there's no evidence this addresses a specific vulnerability—it expands detection coverage for custom threats.

Diff

diff --git a/guardduty/latest/ug/securityhub-integration.md b/guardduty/latest/ug/securityhub-integration.md
index 3731b441f..6bf730dc1 100644
--- a//guardduty/latest/ug/securityhub-integration.md
+++ b//guardduty/latest/ug/securityhub-integration.md
@@ -201,0 +202 @@ GuardDuty finding type |  ASFF finding type
+[Execution:Runtime/MaliciousFileExecuted.Custom](https://docs.aws.amazon.com/guardduty/latest/ug/findings-runtime-monitoring.html#execution-runtime-malicious-file-executed-custom) |  TTPs/Execution/Execution:Runtime-MaliciousFileExecuted.Custom