Internet-Facing Ec2 Instance Has Full Access to S3

IAM misconfigurations

Internet-Facing Ec2 Instance Has Full Access to S3

Platform(s)

Compliance Frameworks

Brazilian General Data Protection (LGPD)
CCPA
CPRA
Data Security Posture Management (DSPM) Best Practices
GDPR
HITRUST
iso_27001_2022
iso_27002_2022
Mitre ATT&CK
New Zealand Information Security Manual
NIST 800-190
NIST 800-53
PDPA
STIG K8s
UK Cyber Essentials

Description

The internet-facing asset {AwsEc2Instance} ({AwsEc2Instance.InstanceId}) was found to have full access to your S3 resources. Instance Profiles with the AmazonS3FullAccess policy attached grant unrestricted access (Action: 's3:*') to S3 resources on the account (Resource: '*'). In the event that the asset is compromised, this will grant the attacker full access to any data stored on your S3 resources.

Demo the Orca Platform-> In just 10 minutes, you’ll see how Orca Security can revolutionize your cloud security strategy. Watch a recorded demo from a cloud security expert now.

Internet-Facing Ec2 Instance Has Full Access to S3

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS