Default security group allows inbound or outbound traffic

Network misconfigurations

Default security group allows inbound or outbound traffic

Platform(s)

Compliance Frameworks

AWS Foundational Security Best Practices Controls
CCM-CSA
CCPA
CPRA
Data Security Posture Management (DSPM) Best Practices
HITRUST
iso_27001_2022
iso_27002_2022
New Zealand Information Security Manual
NIST 800-171
PDPA
UK Cyber Essentials

Description

An AWS Security Group acts as a virtual firewall for your instances to control inbound and outbound traffic. The default security group ""{AwsEc2SecurityGroup}"" ({AwsEc2SecurityGroup.GroupId}) is configured to allow inbound or outbound access, which is considered a bad practice. Default security group cannot be deleted, and should be restricted. This prevents undesired traffic in case the default security group will accidentally be configured for resources such as EC2 instance.

Default security group allows inbound or outbound traffic

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS