Description

The asset {AwsEc2Instance} ({AwsEc2Instance.InstanceId}) is using one or more volumes which are not encrypted ({AwsEc2Instance.Ec2EbsVolumes}). It means that in a case of an attack, the data on the volume is potentially insecure.
  • Recommended Mitigation

    Enable encryption for EBS volumes. See more here: <a href="https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSEncryption.html#encryption-by-default" target="_blank" rel="noopener noreferrer">https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSEncryption.html#encryption-by-default</a>