Enable disk encryption on managed disk
| Property | |
|---|---|
| Language |  |
| Severity |  |
| Service | compute |
| Provider | Azure |
| Vulnerability Type | misconfiguration |
Description#
Managed disks are being provisioned without encryption at rest enabled. This means data stored on these disks is not protected from unauthorized access at the storage level.
Impact#
If the disk or underlying storage is compromised, sensitive data can be read in plaintext by attackers. This exposes the organization to risks such as data breaches, regulatory violations, and potential loss of confidential information.
Resolution#
Enable encryption on managed disks