Aws No Security Config
Description
Detects Amazon EMR clusters that do not have a security configuration attached. EMR security configurations are critical as they define encryption, authentication, and other security controls for processing and analyzing data securely.
Detection Strategy
• Lists all EMR clusters in the specified AWS region
• For each EMR cluster, checks if the SecurityConfiguration property is absent or empty
• Reports a vulnerability if an EMR cluster is found without an associated security configuration
Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan. If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.