Questions tagged with AWS Security Hub
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
Hi,
I created Config Rule to only allow specific type instances to be used and, now I want to feed AWS Security Hub by Config Rule results using EventBridge to automate the process.
How to send Config...
1
answers
0
votes
429
views
asked a year agolg...
See this in security hub:
"The finding is in a WARNING state. The SNS topic associated with this rule is owned by a different account. The current account cannot obtain the subscription information....
1
answers
0
votes
295
views
asked a year agolg...
We created a custom Mysql database for our web app on our EC2 instance, and have recently had the database hacked, deleted and a message was left to pay in bitcoin to recover our data. We've seen how...
1
answers
0
votes
454
views
asked a year agolg...
Hello,
I have a lambda function with policies with the following format:
```
"Effect": "Allow",
"Principal": {
"Service": "s3.amazonaws.com"
},
"Action":...
1
answers
0
votes
528
views
asked a year agolg...
I had a S3 bucket that had a FAILED compliance status in Security Hub having an open finding. I deleted that S3 bucket. However, even after 48 hours, the Security Hub finding was still showing open....
2
answers
0
votes
1084
views
asked a year agolg...
Hi all,
I have recently enabled Security Hub on my account where we have EKS set up via CDK. We have assigned the "AWS Foundational Security Best Practices v1.0.0" standard to Security Hub and it...
1
answers
0
votes
301
views
asked a year agolg...
https://aws.amazon.com/blogs/security/how-to-use-aws-security-hub-and-amazon-opensearch-service-for-siem/
I was going through below blogpost where Opensearch can be used as SiEM tool. I want to...
1
answers
0
votes
519
views
asked a year agolg...
Hello,
We deploy our lambda functions using AWS CDK. Recently we found a few security hub issues which might be related to `ComponentDeploymentStack--CustomCDKECRDeploymentbd-xxxxxxxxxx`. The...
1
answers
0
votes
367
views
asked a year agolg...
I've enabled AWS Inspector and Security hub across my organization with all scanning modes. Ideally, I'd like to use either the official Jira Service Management integration or the aws-samples version...
1
answers
0
votes
1393
views
asked a year agolg...
I'm trying to create a view similar to the controls view in Security Hub. I can see there's a way to connect standards to standards controls, and standards to security controls, but I can't figure...
1
answers
0
votes
267
views
asked a year agolg...
SecurityHub generates following warning:
"ECS.2 ECS services should not have public IP addresses assigned to them automatically".
But why? Our deamon that run on ECS must have access to internet...
3
answers
0
votes
2852
views
asked a year agolg...
As a part of increasing the AWS security score, I wish to set up a log metric filter and alarm for the following actions :-
1. Changes to network gateways
2. Route table changes
3. Changes to Network...
1
answers
0
votes
1133
views
asked a year agolg...