lacework-global-160
Ensure No Public Elastic Block Store (EBS) Snapshots
Description
You can back up the data on your Amazon EBS volumes to Amazon S3 by taking point-in-time snapshots. These snapshots can be private, shared with other AWS accounts, or open to the public.
Remediation
- Log in to the AWS Management Console and select 'EC2' from services.
- Choose Snapshots under Elastic Block Store in the navigation pane.
- Select the applicable snapshot.
- Click 'Modify permissions' on the permissions tab in the bottom pane.
- Select private on the pop-up modal.
- Click save.
References
https://docs.aws.amazon.com/securityhub/latest/userguide/ec2-controls.html#ec2-1