GCP Secret Manager secret encrypted without Customer-Managed Encryption Keys
GCP Secret Manager can store, manage and access secrets, with the appropriate permissions you can view its content. We detected...
Blog
Pub/Sub Topic without Customer-Managed Key Encryption
It was detected that the topic {GcpPubSubTopic} is not using CMK (Customer-Managed Key). Google Cloud Pub/Sub topics should be encrypted...
RDS database instance snapshot is not encrypted
RDS database instance snapshot {AwsRdsDbInstanceSnapshot} does not have storage encryption enabled. Snapshots should be encrypted in order to protect the...
API Gateway is publicly accessible
API Gateway {AwsApiGatewayEndpoint} is publicly accessible. API Gateways should only be accessible from known sources in order to prevent unauthorized...
AWS ECR repository is publicly accessible
We have found that the AWS ECR repository - {AwsEcrRepository} is publicly accessible. AWS ECR - Amazon Elastic Container Registry...
S3 Bucket Allows Public GET
Orca has detected that your s3 bucket '{AwsS3Bucket}' can be publicly accessed for GET actions. An S3 bucket that grants...
S3 Bucket Allows Public DELETE
Orca has detected that your s3 bucket '{AwsS3Bucket}' can be publicly accessed for DELETE actions. An S3 bucket that grants...
Potentially Personal Identifying Information found – Brazilian CPF Number
Unencrypted CPF number was found on a cloud asset. If this information is exposed to cybercriminals, it could lead to...
EBS snapshot is shared with AWS accounts
Amazon EBS (Elastic Block Storage) provide block level storage service designed to be used with EC2 instances. EBS snapshot is...