Data at risk

RDS database snapshot is shared with AWS accounts

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

Amazon Relational Database Service (RDS) allows setting up a relational database instance in the cloud. RDS snapshot is a point-in-time copy of the data stored in a RDS instance. It was detected that the RDS snapshot is shared with AWS accounts. These accounts have the ability to copy and restore the RDS snapshot and thus access its data.
  • Recommended Mitigation

    It is recommended to ensure that the RDS snapshot is shared only with trusted AWS accounts in order to prevent unauthorized users from copying and accessing the data stored in the snapshot.