Plugin Title Storage Bucket All Users Policy
Category Storage
Description Ensures Storage bucket policies do not allow global write, delete, or read permissions
More Info Storage buckets can be configured to allow the global principal to access the bucket via the bucket policy. This policy should be restricted only to known users or accounts.
AWS Link
Recommended Action Ensure that each storage bucket is configured so that no member is set to allUsers or allAuthenticatedUsers.

Detailed Remediation Steps

Want to scan for this risk automatically?

Get Started Now