IAM misconfigurations

Internet Facing EC2 Instance with Administrator Privileges

Risk Level

Imminent Compromised (2)

Platform(s)

Description

The internet-facing asset {AwsEc2Instance} ({AwsEc2Instance.InstanceId}) was found to have full administrative privileges to your account. Instance Profiles with full administrative privileges attached grant unrestricted access (Action: '*') to any resources on the account (Resource: '*'). In the event that the asset is compromised, this may potentially lead to full account takeover.