Over the past weeks we have seen an increased number of incidents where threat actors have gained access to AWS Keys or IAM User Accounts that don’t require MFA. These actors are gaining access to AWS environments and benefiting from widely open IAM policies.
As our customer, we want to make sure that you’re following these basic steps: