Aqua CSPM

SNS Topic Policies

Quick Info

Plugin TitleSNS Topic Policies
CloudAWS
CategorySNS
DescriptionEnsures SNS topics do not allow global send or subscribe.
More InfoSNS policies should not be configured to allow any AWS user to subscribe or send messages. This could result in data leakage or financial DDoS.
AWS Linkhttp://docs.aws.amazon.com/sns/latest/dg/AccessPolicyLanguage.html
Recommended ActionAdjust the topic policy to only allow authorized AWS users in known accounts to subscribe.

Detailed Remediation Steps