More Info:

Amazon S3 Block Public Access feature should be enabled for your S3 buckets to restrict public access to all objects available within these buckets, including those that you upload in the future.

Risk Level

Critical

Address

Security

Compliance Standards

HIPAA, PCIDSS, CISAWS, CBP, NIST, GDPR, HITRUST, SOC2, NISTCSF, FedRAMP

Triage and Remediation

Remediation

Sure, here are the step-by-step instructions to remediate the misconfiguration in AWS:

  1. Login to your AWS Management Console.

  2. Navigate to the S3 service.

  3. Click on the bucket name you want to remediate.

  4. Click on the “Permissions” tab.

  5. Scroll down to the “Block public access” section.

  6. Click on the “Edit” button.

  7. Enable the “Block all public access” option.

  8. Click on the “Save changes” button.

  9. Repeat the above steps for all the buckets in your AWS account.

By following the above steps, you have successfully enabled the S3 Block Public Access feature in your AWS account and remediated the misconfiguration.

Additional Reading: