Skip to content

IBM Watson Visual Recognition Key

Service Name: IBM Watson Visual Recognition

Service Description: IBM Watson Visual Recognition is a service that uses deep learning algorithms to analyze images for scenes, objects, faces, and other content. The service can be trained with custom classifiers to identify specific content in imagery.

Service Address: https://www.ibm.com/cloud/watson-visual-recognition

Validation Type: API Auth

IP Allow list: IP restrictions can be configured at the IBM Cloud account level using network access policies

Secret Access Scope: Grants programmatic access to IBM Watson Visual Recognition API services, allowing applications to analyze image content, create and train custom classifiers, and detect faces and objects in images.

Secret Revokement URL: https://cloud.ibm.com/iam/apikeys

Secret Example: 1234abcd-5678-90ef-ghij-klmnopqrstuv

Suspicious Activity Investigation Instructions:

  • Review IBM Cloud Activity Tracker logs for unusual API calls or usage patterns
  • Check for unexpected spikes in API usage or billing
  • Monitor for unauthorized access from unfamiliar IP addresses
  • Verify if the key has been used in applications or services you don't recognize
  • Check for custom classifiers or models that you didn't create

Mitigation Instructions:

  • Log in to your IBM Cloud account
  • Navigate to Manage > Access (IAM) > API keys
  • Locate the compromised API key
  • Click the "Actions" menu (three dots) and select Delete
  • Create a new API key with appropriate access restrictions
  • Update all legitimate applications with the new API key
  • Review and update IAM policies to enforce the Principle of Least Privilege.
  • Consider implementing service-specific IP allowlists if available
  • Enable multi-factor authentication for your IBM Cloud account