Suspicious activity

S3 bucket with PII changed to public access



Orca detected that S3 bucket with PII data has changed to public access. This action might indicate on an exfiltration attempt, since exposing S3 bucket with sensitive information is bad practice. An attacker might change the bucket's policy to public in order to share confidential information outside the environment.