my-trail
Region: eu-west-1
Overview
Critical
17High
16Medium
0Low
32Informational
16Security issues (81)
Severity | Non-Compliance | Issue | Remediation | Read more | Action |
---|---|---|---|---|---|
Critical | PCI DSS 10.2 HIPAA (Audit) | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | S3 bucket "prevasio-test-bucket" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | S3 bucket "prevasio-test-bucket" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | S3 bucket "prevasio-test-bucket" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | S3 bucket "prevasio-test-bucket" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Critical | — | There are no recommended CloudWatch metric filters found in the log group "my-trail": "CIS 1.1: Avoid the use of "root" account", "CIS 3.2: AWS Console sign-in without MFA", "CIS 3.3: The usage of "root" account"... | Create all metric filters recommended by the CIS AWS Foundations standard. Follow the link to open the web page, and copy all provided patterns into the Filter Pattern field of each metric filter. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | S3 bucket "prevasio-test-bucket" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | S3 bucket "prevasio-test-bucket" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | S3 bucket "prevasio-test-bucket" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | S3 bucket "prevasio-test-bucket" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | S3 bucket "prevasio-test-bucket" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | S3 bucket "prevasio-test-bucket" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | S3 bucket "prevasio-test-bucket" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | S3 bucket "prevasio-test-bucket" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | S3 bucket "prevasio-test-bucket" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | S3 bucket "prevasio-test-bucket" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | S3 bucket "prevasio-test-bucket" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info | |
Critical | PCI DSS 10.2 HIPAA (Audit) | CloudTrail logs are not being delivered. The latest delivery attempt produced an error "NoSuchBucket". | Check out your CloudTrail configuration to make sure the logs are being delivered. | More info | |
Informational | PCI DSS 10.2 HIPAA (Audit) | Logging data events for trails is disabled. | Data events provide visibility into the resource operations performed on or within a resource. Please note that additional charges apply for logging data events. | More info | |
High | — | S3 bucket "prevasio-test-bucket" is used by CloudTrail, but it has no S3 Object Lock. | S3 Object Lock has been assessed by Cohasset Associates for use in environments that are subject to SEC 17a-4, CFTC, and FINRA regulations. | More info | |
Low | CIS 3.6 PCI DSS 10.2 HIPAA (Audit) | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has Server access logging disabled. | Ensure S3 bucket access logging is enabled on the CloudTrail S3 bucket. | More info | |
Low | CIS 2.1.3 | S3 bucket "prevasio-test-bucket" is used by CloudTrail and has MFA delete disabled in the bucket versioning configuration. | Add another layer of security by configuring a bucket to enable MFA (multi-factor authentication) delete. | More info |