New featureMedium

AWS Security Hub adds impact analysis for exposure findings

AWS Security Hub introduces impact analysis for exposure findings, helping security teams understand the full scope of potential attacker access

AWS Security Hub now adds impact analysis to exposure findings, helping security teams understand the full scope of what an attacker could reach if an exposure is exploited. Impact analysis extends exposure findings by mapping downstream resources that could be compromised beyond the initially exposed resource, providing deeper visibility into organizational risk. Security Hub analyzes the effective permissions of IAM principals associated with exposed resources to identify privilege escalation paths to other resources in the account. The resulting scope of impact is displayed in the potential attack path graph, and a new Impact Assessment tab shows prioritized chains of resources an attacker could traverse along with specific permissions at each step. Security Hub factors the scope of impact into its severity scoring for exposure findings, adjusting existing exposures as their scope of impact is identified or changes, ensuring exposures with greater downstream reach are prioritized appropriately.

Read the original AWS announcement