Description

Some AWS Redshift cluster are not encrypted.

Impact

Obtain critical information from the databases in plaintext

Recommendation

Enable the redshift encryption for all clusters

Threat

Authenticated attacker from the Internet with access to the redshift cluster

Expected Remediation Time

⏱️ 60 minutes.

Details

https://docs.aws.amazon.com/redshift/latest/mgmt/working-with-db-encryption.html

Requirements

Fixes