Amazon GuardDuty detected alerts for the Recon:EC2/PortProbeUnprotectedPort finding type for my Amazon Elastic Compute Cloud (Amazon EC2) instance.
The GuardDuty finding type Recon:EC2/PortProbeUnprotectedPort means that an Amazon EC2 instance has an unprotected port that is being probed by a known malicious host.
Use the following best practices to protect the unprotected port or remove inbound rules:
Monitoring GuardDuty findings with Amazon CloudWatch Events
Finding types