February 02, 2023, Conformity—Rule Update
- Updated the Severity for the following RTM Configuration Change Rules from `HIGH` to `LOW` to improve alert fatigue as these rules do not ideally represent a security vulnerability. These rules are more of events prompting you to review your severity and change it as required.
Azure
- Network-014: Monitor Network Security Group Configuration Changes
AWS
- Config-005: AWS Config Configuration Changes
- CT-013: AWS CloudTrail Configuration Changes
- ECS-001: Monitor Amazon ECS Configuration Changes
- GD-003: AWS GuardDuty Configuration Changes
- IAM-054: IAM Configuration Changes
- KMS-007: Monitor AWS KMS Configuration Changes
- Organizations-003: AWS Organizations Configuration Changes
- RDS-036: Amazon RDS Configuration Changes
- Route53-009: Amazon Route 53 Configuration Changes
- Route53Domains-001: Amazon Route 53 Domains Configuration Changes
- RTM-009: Network configuration change detected
- S3-022: S3 Configuration Changes
- SecurityHub-001: Detect AWS Security Hub Configuration Changes