S3 Data should be versioned
| Property | |
|---|---|
| Language |  |
| Severity |  |
| Service | s3 |
| Provider | AWS |
| Vulnerability Type | omission |
Description#
S3 buckets are configured without versioning enabled, meaning object changes or deletions permanently overwrite or remove previous data with no way to recover prior versions.
Impact#
If an object is accidentally or maliciously deleted or modified, the original data cannot be restored, increasing the risk of data loss or service disruption and potentially impacting business continuity or compliance requirements.
Resolution#
Enable versioning to protect against accidental/malicious removal or modification