Data at risk

RDS database instance is publicly accessible

Risk Level

Hazardous (3)

Platform(s)
Compliance Frameworks

Description

RDS database instance {AwsRdsDbInstance} is publicly accessible. When the RDS instance allows unrestricted access, everyone and everything on the Internet can establish a connection to your database and this can increase the opportunity for malicious activities such as brute force attacks, PostgreSQL injections, or DoS/DDoS attacks.

  • Recommended Mitigation

    We recommend to disable the database Publicly Accessible flag and to update the VPC security group associated with the instance to restrict public access.

Need help?

Get a free Security Risk Assessment. Start today

See Orca in action See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.