Data protection

Storage Bucket publicly visible

Risk Level

Hazardous (3)

Platform(s)

  • N/A

Compliance Frameworks

Description

A bucket is a logical container for storing objects. It is associated with a single compartment that has policies that determine what action a user can perform on a bucket and on all the objects in the bucket. It was detected that Storage Bucket {OciStorageBucket.Name} is publicly visible. A bucket with public visibility allows anonymous and unauthenticated users to access data stored in the bucket. Removing unfettered reading of objects in a bucket reduces an organization's exposure to data loss.

  • Recommended Mitigation

    It is recommended to enable private visibility for the bucket.

Need help?

Get a free Security Risk Assessment. Start today

See Orca in action See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.