AWS S3 object accessed without authentication

ID:aws_s3_unauthenticated

Data type:AWS CloudTrail

Severity:

Medium

Description

AlphaSOC detected unexpected unauthenticated access to an AWS S3 object. This indicates that an AWS S3 bucket or an object is publicly accessible, allowing anyone to retrieve, modify, or delete its contents.

Impact

Allowing public access to AWS S3 buckets can have serious consequences for data security and privacy. It can also lead to increased costs, as AWS charges fees for retrieving data from AWS S3 buckets. Unauthorized individuals may be able to read, modify, or delete sensitive information stored in the bucket, which could lead to data leaks or the distribution of harmful content.

Severity

Severity	Condition
Medium	AWS S3 object accessed without authentication

Investigation and Remediation

Identify the specific AWS S3 bucket or object involved and review its permissions. If public access wasn't granted intentionally, revoke it or use S3 Block Public Access feature.

Description​

Impact​

Severity​

Investigation and Remediation​

Description

Impact

Severity

Investigation and Remediation