AWS ElastiCache Redis cluster created without encryption at rest

ID:aws_elasticache_cluster_created_unencrypted

Data type:AWS CloudTrail

Severity:

Low

Description

AlphaSOC detected that an AWS ElastiCache Redis cluster was created without encryption at rest. AWS ElastiCache Redis is a managed, in-memory data storage and caching service. This configuration exposes data stored in the Redis cluster to unauthorized access and creates compliance risks.

Impact

Unencrypted Redis clusters allow adversaries to access sensitive data stored in cache if they gain access to the underlying storage. This can lead to the exposure of secrets, session tokens, and other confidential information.

Severity

Severity	Condition
Low	ElastiCache Redis cluster creation without encryption at rest

Investigation and Remediation

Review the ElastiCache cluster configuration and identify who created it. Enable encryption at rest by creating a new encrypted cluster and migrating data from the unencrypted cluster. Delete the unencrypted cluster after migration.

Description​

Impact​

Severity​

Investigation and Remediation​

Description

Impact

Severity

Investigation and Remediation