Risk: EC2 AMI/EBS/RDS/ Snapshots that contain an "isPublic = true" are shared globally > leading to information disclosure/leakage. If f.e. the shared AMI contains crediantials which were unintentional baked into the image
Remidiation: Establish an AWS Config rule that revokes all public sharing cababilities, make audits of the configuration
Risk: EC2 AMI/EBS/RDS/ Snapshots that contain an "isPublic = true" are shared globally > leading to information disclosure/leakage. If f.e. the shared AMI contains crediantials which were unintentional baked into the image
Remidiation: Establish an AWS Config rule that revokes all public sharing cababilities, make audits of the configuration