S3 Bucket is Accessible to Unmonitored Accounts

Data at risk

S3 Bucket is Accessible to Unmonitored Accounts

Risk Level

Hazardous (3)

Platform(s)

Compliance Frameworks

Brazilian General Data Protection (LGPD)
CCPA
CPRA
Data Security Posture Management (DSPM) Best Practices
GDPR
HITRUST
ISO/IEC 27001
Mitre ATT&CK
New Zealand Information Security Manual
NIST 800-171
NIST 800-53
Orca Best Practices
PDPA
UK Cyber Essentials

Description

{AwsS3Bucket} has a policy that allows external AWS accounts to access it. This means that a malicious actor can also connect to the bucket and gain access to its contents.

Recommended Mitigation

Rewrite S3 bucket policies to only allow access to the accounts/applications/services that really need it.

S3 Bucket is Accessible to Unmonitored Accounts

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS