AWS CloudTrail
Overview
Critical
34High
32Medium
18Low
80Informational
32Security issues (196)
Severity | Non-Compliance | Region | Resource | Issue | Remediation | Read more | Action |
---|---|---|---|---|---|---|---|
Critical | PCI DSS 10.2 HIPAA (Audit) | us-east-1 | my-trail | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | us-east-1 | my-trail | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | us-east-1 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | us-east-1 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | us-east-1 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Low | CIS 3.4 | us-east-1 | test-trail | CloudTrail is not configured to send logs to CloudWatch Logs for real-time analysis. | Ensure CloudTrail trails are integrated with Amazon CloudWatch Logs. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | us-east-1 | test-trail | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | us-east-1 | test-trail | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | us-east-1 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | us-east-1 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | us-east-1 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Medium | CIS 3.1 | us-east-1 | CloudTrail | No CloudTrail trails found for this region. | Create a CloudTrail trail to meet your governance, compliance, and auditing needs for your AWS accounts. | More info | |
Medium | — | us-east-1 | CloudTrail | You have 32 CloudTrail trails with multi-region logging configuration that record global service events. | To avoid duplication, ensure you have only one trail to log global service events. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | us-east-2 | my-trail | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | us-east-2 | my-trail | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | us-east-2 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | us-east-2 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | us-east-2 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Low | CIS 3.4 | us-east-2 | test-trail | CloudTrail is not configured to send logs to CloudWatch Logs for real-time analysis. | Ensure CloudTrail trails are integrated with Amazon CloudWatch Logs. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | us-east-2 | test-trail | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | us-east-2 | test-trail | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | us-east-2 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | us-east-2 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | us-east-2 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Medium | CIS 3.1 | us-east-2 | CloudTrail | No CloudTrail trails found for this region. | Create a CloudTrail trail to meet your governance, compliance, and auditing needs for your AWS accounts. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | us-west-1 | my-trail | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | us-west-1 | my-trail | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | us-west-1 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | us-west-1 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | us-west-1 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Low | CIS 3.4 | us-west-1 | test-trail | CloudTrail is not configured to send logs to CloudWatch Logs for real-time analysis. | Ensure CloudTrail trails are integrated with Amazon CloudWatch Logs. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | us-west-1 | test-trail | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | us-west-1 | test-trail | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | us-west-1 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | us-west-1 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | us-west-1 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Medium | CIS 3.1 | us-west-1 | CloudTrail | No CloudTrail trails found for this region. | Create a CloudTrail trail to meet your governance, compliance, and auditing needs for your AWS accounts. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | us-west-2 | my-trail | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | us-west-2 | my-trail | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | us-west-2 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | us-west-2 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | us-west-2 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Critical | — | us-west-2 | my-trail | There are no recommended CloudWatch metric filters found in the log group "my-trail": "CIS 1.1: Avoid the use of "root" account", "CIS 3.2: AWS Console sign-in without MFA", "CIS 3.3: The usage of "root" account"... | Create all metric filters recommended by the CIS AWS Foundations standard. Follow the link to open the web page, and copy all provided patterns into the Filter Pattern field of each metric filter. | More info | |
Low | CIS 3.4 | us-west-2 | test-trail | CloudTrail is not configured to send logs to CloudWatch Logs for real-time analysis. | Ensure CloudTrail trails are integrated with Amazon CloudWatch Logs. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | us-west-2 | test-trail | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | us-west-2 | test-trail | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | us-west-2 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | us-west-2 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | us-west-2 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Critical | CIS 3.4 | us-west-2 | test-trail | CloudTrail trail is not using CloudWatch Logs to monitor your trail logs and notify you when suspicious activity occurs. | Configure your CloudTrail trail to send events to CloudWatch Logs: specify an existing CloudWatch Logs log group, or create a new one to which to send your events. | More info | |
Medium | CIS 3.1 | ap-east-1 | CloudTrail | No CloudTrail trails found for this region. | Create a CloudTrail trail to meet your governance, compliance, and auditing needs for your AWS accounts. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | ap-south-1 | my-trail | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | ap-south-1 | my-trail | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | ap-south-1 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | ap-south-1 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | ap-south-1 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Low | CIS 3.4 | ap-south-1 | test-trail | CloudTrail is not configured to send logs to CloudWatch Logs for real-time analysis. | Ensure CloudTrail trails are integrated with Amazon CloudWatch Logs. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | ap-south-1 | test-trail | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | ap-south-1 | test-trail | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | ap-south-1 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | ap-south-1 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | ap-south-1 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Medium | CIS 3.1 | ap-south-1 | CloudTrail | No CloudTrail trails found for this region. | Create a CloudTrail trail to meet your governance, compliance, and auditing needs for your AWS accounts. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | ap-northeast-2 | my-trail | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | ap-northeast-2 | my-trail | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | ap-northeast-2 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | ap-northeast-2 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | ap-northeast-2 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Low | CIS 3.4 | ap-northeast-2 | test-trail | CloudTrail is not configured to send logs to CloudWatch Logs for real-time analysis. | Ensure CloudTrail trails are integrated with Amazon CloudWatch Logs. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | ap-northeast-2 | test-trail | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | ap-northeast-2 | test-trail | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | ap-northeast-2 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | ap-northeast-2 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | ap-northeast-2 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Medium | CIS 3.1 | ap-northeast-2 | CloudTrail | No CloudTrail trails found for this region. | Create a CloudTrail trail to meet your governance, compliance, and auditing needs for your AWS accounts. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | ap-southeast-1 | my-trail | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | ap-southeast-1 | my-trail | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | ap-southeast-1 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | ap-southeast-1 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | ap-southeast-1 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Low | CIS 3.4 | ap-southeast-1 | test-trail | CloudTrail is not configured to send logs to CloudWatch Logs for real-time analysis. | Ensure CloudTrail trails are integrated with Amazon CloudWatch Logs. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | ap-southeast-1 | test-trail | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | ap-southeast-1 | test-trail | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | ap-southeast-1 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | ap-southeast-1 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | ap-southeast-1 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Medium | CIS 3.1 | ap-southeast-1 | CloudTrail | No CloudTrail trails found for this region. | Create a CloudTrail trail to meet your governance, compliance, and auditing needs for your AWS accounts. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | ap-southeast-2 | my-trail | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | ap-southeast-2 | my-trail | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | ap-southeast-2 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | ap-southeast-2 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | ap-southeast-2 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Low | CIS 3.4 | ap-southeast-2 | test-trail | CloudTrail is not configured to send logs to CloudWatch Logs for real-time analysis. | Ensure CloudTrail trails are integrated with Amazon CloudWatch Logs. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | ap-southeast-2 | test-trail | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | ap-southeast-2 | test-trail | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | ap-southeast-2 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | ap-southeast-2 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | ap-southeast-2 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Medium | CIS 3.1 | ap-southeast-2 | CloudTrail | No CloudTrail trails found for this region. | Create a CloudTrail trail to meet your governance, compliance, and auditing needs for your AWS accounts. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | ap-northeast-1 | my-trail | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | ap-northeast-1 | my-trail | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | ap-northeast-1 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | ap-northeast-1 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | ap-northeast-1 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Low | CIS 3.4 | ap-northeast-1 | test-trail | CloudTrail is not configured to send logs to CloudWatch Logs for real-time analysis. | Ensure CloudTrail trails are integrated with Amazon CloudWatch Logs. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | ap-northeast-1 | test-trail | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | ap-northeast-1 | test-trail | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | ap-northeast-1 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | ap-northeast-1 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | ap-northeast-1 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Medium | CIS 3.1 | ap-northeast-1 | CloudTrail | No CloudTrail trails found for this region. | Create a CloudTrail trail to meet your governance, compliance, and auditing needs for your AWS accounts. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | ca-central-1 | my-trail | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | ca-central-1 | my-trail | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | ca-central-1 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | ca-central-1 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | ca-central-1 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Low | CIS 3.4 | ca-central-1 | test-trail | CloudTrail is not configured to send logs to CloudWatch Logs for real-time analysis. | Ensure CloudTrail trails are integrated with Amazon CloudWatch Logs. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | ca-central-1 | test-trail | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | ca-central-1 | test-trail | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | ca-central-1 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | ca-central-1 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | ca-central-1 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Medium | CIS 3.1 | ca-central-1 | CloudTrail | No CloudTrail trails found for this region. | Create a CloudTrail trail to meet your governance, compliance, and auditing needs for your AWS accounts. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | eu-central-1 | my-trail | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | eu-central-1 | my-trail | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | eu-central-1 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | eu-central-1 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | eu-central-1 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Low | CIS 3.4 | eu-central-1 | test-trail | CloudTrail is not configured to send logs to CloudWatch Logs for real-time analysis. | Ensure CloudTrail trails are integrated with Amazon CloudWatch Logs. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | eu-central-1 | test-trail | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | eu-central-1 | test-trail | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | eu-central-1 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | eu-central-1 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | eu-central-1 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Medium | CIS 3.1 | eu-central-1 | CloudTrail | No CloudTrail trails found for this region. | Create a CloudTrail trail to meet your governance, compliance, and auditing needs for your AWS accounts. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | eu-west-1 | my-trail | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | eu-west-1 | my-trail | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | eu-west-1 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | eu-west-1 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | eu-west-1 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Low | CIS 3.4 | eu-west-1 | test-trail | CloudTrail is not configured to send logs to CloudWatch Logs for real-time analysis. | Ensure CloudTrail trails are integrated with Amazon CloudWatch Logs. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | eu-west-1 | test-trail | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | eu-west-1 | test-trail | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | eu-west-1 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | eu-west-1 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | eu-west-1 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Medium | CIS 3.1 | eu-west-1 | CloudTrail | No CloudTrail trails found for this region. | Create a CloudTrail trail to meet your governance, compliance, and auditing needs for your AWS accounts. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | eu-west-2 | my-trail | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | eu-west-2 | my-trail | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | eu-west-2 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | eu-west-2 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | eu-west-2 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Low | CIS 3.4 | eu-west-2 | test-trail | CloudTrail is not configured to send logs to CloudWatch Logs for real-time analysis. | Ensure CloudTrail trails are integrated with Amazon CloudWatch Logs. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | eu-west-2 | test-trail | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | eu-west-2 | test-trail | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | eu-west-2 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | eu-west-2 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | eu-west-2 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Medium | CIS 3.1 | eu-west-2 | CloudTrail | No CloudTrail trails found for this region. | Create a CloudTrail trail to meet your governance, compliance, and auditing needs for your AWS accounts. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | eu-west-3 | my-trail | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | eu-west-3 | my-trail | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | eu-west-3 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | eu-west-3 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | eu-west-3 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Low | CIS 3.4 | eu-west-3 | test-trail | CloudTrail is not configured to send logs to CloudWatch Logs for real-time analysis. | Ensure CloudTrail trails are integrated with Amazon CloudWatch Logs. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | eu-west-3 | test-trail | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | eu-west-3 | test-trail | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | eu-west-3 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | eu-west-3 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | eu-west-3 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Medium | CIS 3.1 | eu-west-3 | CloudTrail | No CloudTrail trails found for this region. | Create a CloudTrail trail to meet your governance, compliance, and auditing needs for your AWS accounts. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | eu-north-1 | my-trail | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | eu-north-1 | my-trail | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | eu-north-1 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | eu-north-1 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | eu-north-1 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Low | CIS 3.4 | eu-north-1 | test-trail | CloudTrail is not configured to send logs to CloudWatch Logs for real-time analysis. | Ensure CloudTrail trails are integrated with Amazon CloudWatch Logs. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | eu-north-1 | test-trail | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | eu-north-1 | test-trail | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | eu-north-1 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | eu-north-1 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | eu-north-1 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Medium | CIS 3.1 | eu-north-1 | CloudTrail | No CloudTrail trails found for this region. | Create a CloudTrail trail to meet your governance, compliance, and auditing needs for your AWS accounts. | More info | |
Medium | CIS 3.1 | me-south-1 | CloudTrail | No CloudTrail trails found for this region. | Create a CloudTrail trail to meet your governance, compliance, and auditing needs for your AWS accounts. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | sa-east-1 | my-trail | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | sa-east-1 | my-trail | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | sa-east-1 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | sa-east-1 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | sa-east-1 | my-trail | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Low | CIS 3.4 | sa-east-1 | test-trail | CloudTrail is not configured to send logs to CloudWatch Logs for real-time analysis. | Ensure CloudTrail trails are integrated with Amazon CloudWatch Logs. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | sa-east-1 | test-trail | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | sa-east-1 | test-trail | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | sa-east-1 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | sa-east-1 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | sa-east-1 | test-trail | S3 bucket "aws-cloudtrail-logs-531239714189-8b5cd0ac" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Medium | CIS 3.1 | sa-east-1 | CloudTrail | No CloudTrail trails found for this region. | Create a CloudTrail trail to meet your governance, compliance, and auditing needs for your AWS accounts. | More info |
Trails (32)
Region | Name | Home region | Multi-regional trail | Insights | Organization trail | S3 bucket | Log file prefix | Status | Security issues |
---|---|---|---|---|---|---|---|---|---|
us-east-1 | my-trail | US West (Oregon) | Yes | Disabled | No | prevasio-test-bucket | — | Logging | 17 Critical + 64 others (details) |
us-east-1 | test-trail | US West (Oregon) | Yes | Disabled | No | aws-cloudtrail-logs-531239714189-8b5cd0ac | — | Logging | 17 Critical + 80 others (details) |
us-east-2 | my-trail | US West (Oregon) | Yes | Disabled | No | prevasio-test-bucket | — | Logging | 17 Critical + 64 others (details) |
us-east-2 | test-trail | US West (Oregon) | Yes | Disabled | No | aws-cloudtrail-logs-531239714189-8b5cd0ac | — | Logging | 17 Critical + 80 others (details) |
us-west-1 | my-trail | US West (Oregon) | Yes | Disabled | No | prevasio-test-bucket | — | Logging | 17 Critical + 64 others (details) |
us-west-1 | test-trail | US West (Oregon) | Yes | Disabled | No | aws-cloudtrail-logs-531239714189-8b5cd0ac | — | Logging | 17 Critical + 80 others (details) |
us-west-2 | my-trail | US West (Oregon) | Yes | Disabled | No | prevasio-test-bucket | — | Logging | 17 Critical + 64 others (details) |
us-west-2 | test-trail | US West (Oregon) | Yes | Disabled | No | aws-cloudtrail-logs-531239714189-8b5cd0ac | — | Logging | 17 Critical + 80 others (details) |
ap-south-1 | my-trail | US West (Oregon) | Yes | Disabled | No | prevasio-test-bucket | — | Logging | 17 Critical + 64 others (details) |
ap-south-1 | test-trail | US West (Oregon) | Yes | Disabled | No | aws-cloudtrail-logs-531239714189-8b5cd0ac | — | Logging | 17 Critical + 80 others (details) |
ap-northeast-2 | my-trail | US West (Oregon) | Yes | Disabled | No | prevasio-test-bucket | — | Logging | 17 Critical + 64 others (details) |
ap-northeast-2 | test-trail | US West (Oregon) | Yes | Disabled | No | aws-cloudtrail-logs-531239714189-8b5cd0ac | — | Logging | 17 Critical + 80 others (details) |
ap-southeast-1 | my-trail | US West (Oregon) | Yes | Disabled | No | prevasio-test-bucket | — | Logging | 17 Critical + 64 others (details) |
ap-southeast-1 | test-trail | US West (Oregon) | Yes | Disabled | No | aws-cloudtrail-logs-531239714189-8b5cd0ac | — | Logging | 17 Critical + 80 others (details) |
ap-southeast-2 | my-trail | US West (Oregon) | Yes | Disabled | No | prevasio-test-bucket | — | Logging | 17 Critical + 64 others (details) |
ap-southeast-2 | test-trail | US West (Oregon) | Yes | Disabled | No | aws-cloudtrail-logs-531239714189-8b5cd0ac | — | Logging | 17 Critical + 80 others (details) |
ap-northeast-1 | my-trail | US West (Oregon) | Yes | Disabled | No | prevasio-test-bucket | — | Logging | 17 Critical + 64 others (details) |
ap-northeast-1 | test-trail | US West (Oregon) | Yes | Disabled | No | aws-cloudtrail-logs-531239714189-8b5cd0ac | — | Logging | 17 Critical + 80 others (details) |
ca-central-1 | my-trail | US West (Oregon) | Yes | Disabled | No | prevasio-test-bucket | — | Logging | 17 Critical + 64 others (details) |
ca-central-1 | test-trail | US West (Oregon) | Yes | Disabled | No | aws-cloudtrail-logs-531239714189-8b5cd0ac | — | Logging | 17 Critical + 80 others (details) |
eu-central-1 | my-trail | US West (Oregon) | Yes | Disabled | No | prevasio-test-bucket | — | Logging | 17 Critical + 64 others (details) |
eu-central-1 | test-trail | US West (Oregon) | Yes | Disabled | No | aws-cloudtrail-logs-531239714189-8b5cd0ac | — | Logging | 17 Critical + 80 others (details) |
eu-west-1 | my-trail | US West (Oregon) | Yes | Disabled | No | prevasio-test-bucket | — | Logging | 17 Critical + 64 others (details) |
eu-west-1 | test-trail | US West (Oregon) | Yes | Disabled | No | aws-cloudtrail-logs-531239714189-8b5cd0ac | — | Logging | 17 Critical + 80 others (details) |
eu-west-2 | my-trail | US West (Oregon) | Yes | Disabled | No | prevasio-test-bucket | — | Logging | 17 Critical + 64 others (details) |
eu-west-2 | test-trail | US West (Oregon) | Yes | Disabled | No | aws-cloudtrail-logs-531239714189-8b5cd0ac | — | Logging | 17 Critical + 80 others (details) |
eu-west-3 | my-trail | US West (Oregon) | Yes | Disabled | No | prevasio-test-bucket | — | Logging | 17 Critical + 64 others (details) |
eu-west-3 | test-trail | US West (Oregon) | Yes | Disabled | No | aws-cloudtrail-logs-531239714189-8b5cd0ac | — | Logging | 17 Critical + 80 others (details) |
eu-north-1 | my-trail | US West (Oregon) | Yes | Disabled | No | prevasio-test-bucket | — | Logging | 17 Critical + 64 others (details) |
eu-north-1 | test-trail | US West (Oregon) | Yes | Disabled | No | aws-cloudtrail-logs-531239714189-8b5cd0ac | — | Logging | 17 Critical + 80 others (details) |
sa-east-1 | my-trail | US West (Oregon) | Yes | Disabled | No | prevasio-test-bucket | — | Logging | 17 Critical + 64 others (details) |
sa-east-1 | test-trail | US West (Oregon) | Yes | Disabled | No | aws-cloudtrail-logs-531239714189-8b5cd0ac | — | Logging | 17 Critical + 80 others (details) |