Suspicious activity
S3 Bucket with Policy:S3/BucketAnonymousAccessGranted GuardDuty Alert Found
Risk Level
Informational (4)
Platform(s)
Non-platform specific
Compliance Frameworks
- Brazilian General Data Protection (LGPD) ,
- CCM-CSA ,
- CCPA ,
- cis_8 ,
- CPRA ,
- GDPR ,
- HITRUST ,
- ISO/IEC 27001 ,
- Mitre ATT&CK ,
- New Zealand Information Security Manual ,
- NIST 800-171 ,
- NIST 800-53 ,
- PDPA ,
- UK Cyber Essentials
Description
GuardDuty finding was triggered for s3 bucket.-
Recommended Mitigation
It is recommended to restrict the access to the bucket and attend additional alerts on it.