Public Buckets

On this page, we surface all public S3 Buckets. Public S3 Buckets pose a significant risk to an organization because they can inadvertently expose sensitive data to the open Internet, opening avenues for data loss and possible account compromise.

Buckets discovered will be initially put into the 'Needs Review' group. Users can review the details associated with each bucket and decide whether to Approve or Flag a public bucket.

We'll perform a Data Composition analysis of each Bucket and determine what kind of files exist. Based on that, we will provide Risk Signals that may provide insights into whether a bucket should be left Public or not.

Approving or Flagging Buckets

Click on the check mark next to a Bucket name. You'll see 'Approve Selected' and 'Flag as Violation' show up as options. Once selecting a verdict, you'll see it in the 'In Violation' or 'Approved' tab.

Buckets categorized as In Violation or Approved can have their group changed at any time. Simply select the bucket and click the desired button to move the bucket between groups.