AWS > MQ >

MQ Broker Public Accessibility

MEDIUM
Source
CloudSploit
ID
mq-broker-public-accessibility

MQ Broker Public Accessibility

Ensure that Amazon MQ brokers are not publicly accessible.

Public Amazon MQ brokers can be accessed directly, outside of a Virtual Private Cloud (VPC), therefore every machine on the internet can reach your brokers through their public endpoints and this can increase the opportunity for malicious activity.

Review and update the security group settings to restrict public access to Amazon MQ brokers.