AWS EC2 instance allows public ingress access on Redis port 6379
Redis is a caching service to store application related information which is sensitive and confidential. Allowing inbound traffic from external...
Cloud Risks
Cloud function without HTTPS Trigger
GCP cloud function {GcpCloudFunction} was detected running without HTTPS trigger, allowing unauthenticated invocation by default.
AWS EC2 instance allows public ingress access on LDAP port 389
LDAP (Lightweight Directory Access Protocol) is used to connect to directory services for user authentication and retrieval. Allowing Inbound traffic...
Asset Configuration
The asset {asset_name} ({asset_id}) is configured to use instance metadata service version 1 and 2 (Metadata_HttpToken = {Metadata_HttpTokens}, not enforcing...
S3 Bucket Object Versioning
Using versioning-enabled S3 buckets will allow you to preserve, retrieve, and restore every version of an S3 object. S3 versioning...
API access from suspicious source IP was detected
AWS API call was detected from IP address which is categorized as suspicious
GCP Logging service – UpdateSink method
API call detected to service logging.googleapis.com, method UpdateSink
Default security group is being used
An AWS Security Group acts as a virtual firewall for your instances to control inbound and outbound traffic. We identified...
Security group allows unrestricted inbound traffic
An AWS Security Group acts as a virtual firewall for your instances to control inbound and outbound traffic. We identified...