Data protection

CloudAccount with Externally Exposed AMI’s

Risk Level

Hazardous (3)

Platform(s)

Description

We found that you have a cloud account with Amazon Machine Image (AMI) {AwsEc2Image} that are public. A public AMI is available for use by all AWS accounts, and therefore any account can launch EC2 instances from it.
  • Recommended Mitigation

    It is recommended to change the AMI configuration to private or share it with specific AWS accounts according to need. For more info see <a href="https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/sharing-amis.html" target="_blank" rel="noopener noreferrer">https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/sharing-amis.html</a>