Ensure that AWS EC2 Instances are not associated with default security group.
The default security group allows all traffic inbound and outbound, which can make your resources vulnerable to attacks. Ensure that the Amazon EC2 instances are not associated with the default security groups.
Modify EC2 instances and change security group.