You need to investigate a compromised service account key and audit the new resources created by that account. What should you do?