You are configuring Security Command Center (SCC) Premium for a large financial institution. The CISO wants to be alerted immediately if a service account key is leaked to a public GitHub repository, and wants to detect if any Compute Engine instances are communicating with known malicious IP addresses (botnets). Which TWO SCC built-in services provide these capabilities? (Select TWO)

Security Command Center Premium includes several specialized detection services. 'Event Threat Detection' analyzes VPC Flow Logs and Cloud Audit Logs in near real-time to detect active threats, such as VMs communicating with known botnet command-and-control servers. Google also runs a 'leaked credential detection' program that constantly scans public GitHub repositories; if it finds a GCP service account key belonging to your organization, it immediately creates a finding in SCC.