Plugin Title Storage Bucket All Users Policy
Category Storage
Description Ensures Storage bucket policies do not allow global write, delete, or read permissions
More Info Storage buckets can be configured to allow the global principal to access the bucket via the bucket policy. This policy should be restricted only to known users or accounts.
AWS Link
Recommended Action 1. Enter the Storage Service. 2. Select the ... next to the Bucket and choose Edit Bucket Permissions. 3. In each Permission, ensure that no member is allUsers or allAuthenticatedUsers

Detailed Remediation Steps

Want to scan for this risk automatically?

Get Started Now