Keung-Lee
commented
3 years ago UPDATE
DynamoDB is NoSQL hence SQL injections is unlikely, updating this use case to focus on to the potential threat of someone who has access to the table and intentionally altering the values within the table.
Potential Remediation:
-
Create an alarm that sends an alert once someone updates DynamoDB table via console
-
Set up access policies for appropriate IAM roles
Possible Remediation:
Sanitize user inputs
Identify malicious IP address and block them for X time
Multiple attempts from the same IP address results in a block and notification to Discord channel