Fluid Attacks Database

Description

This detector identifies AWS WorkSpaces that have unencrypted volumes, which could expose sensitive data. It checks both root volumes and user volumes for each WorkSpace instance to ensure proper encryption is enabled, as unencrypted WorkSpace volumes pose a security risk for data at rest.

Weakness:

407 - Non-encrypted confidential information - EBS Volumes

Category: Information Collection

Detection Strategy

• Reports a vulnerability when a WorkSpace has root volume encryption disabled (RootVolumeEncryptionEnabled = false)

• Reports a vulnerability when a WorkSpace has user volume encryption disabled (UserVolumeEncryptionEnabled = false)

• Checks all WorkSpaces in the specified AWS region and reports each instance that has either or both volume types unencrypted

Free trial

Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan. If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.