Network misconfigurations

Default VPC is being used to launch an EKS cluster

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

A default VPC is automatically created when you first provision related resources and is suitable for a quick start. The default VPC is used when an instance is launched without a particular subnet. It was found that the default VPC is being used for launching your EKS cluster {AwsEksCluster}. The default VPC comes with a default configuration that lacks the proper security controls. Your network should be well configured and follow the least privilege principle, meaning only the necessary privileges are granted. Therefore, the default VPC will not suit your needs.

  • Recommended Mitigation

    It is recommended to configure a new VPC for your instances. For more information please see <a href="https://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/default-vpc.html" target="_blank" rel="noopener noreferrer">https://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/default-vpc.html</a>

Need help?

Get a free Security Risk Assessment. Start today

See Orca in action See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.