Amazon_EC2_14

Ensure there should not be any public EBS Snapshots

Description

Elastic Block Store (EBS) volume snapshots should not be public in order to avoid exposure of the sensitive data.

Remediation

1. Sign in to the AWS Management Console.

2. Navigate to EC2 dashboard.

3. In the navigation panel, under Elastic Block Store, click Snapshots.

4. Select the EBS snapshot that you want to make private.

5. Select the Permissions tab from the dashboard bottom panel and click the Edit button to update the access permissions for the selected volume snapshot.

6. Inside Modify Permissions dialog box, within This snapshot is current section, select Private then click Save.

Service

EC2

Severity

High

Compliance

Mapping

We are now live on AWS Marketplace.
The integrated view of your cloud infrastructure is now easier than ever!