Views:
February 02, 2023, Conformity—Rule Update
  • Updated the Severity for the following RTM Configuration Change Rules from `HIGH` to `LOW` to improve alert fatigue as these rules do not ideally represent a security vulnerability. These rules are more of events prompting you to review your severity and change it as required.
Azure
  • Network-014: Monitor Network Security Group Configuration Changes
AWS
  • Config-005: AWS Config Configuration Changes
  • CT-013: AWS CloudTrail Configuration Changes
  • ECS-001: Monitor Amazon ECS Configuration Changes
  • GD-003: AWS GuardDuty Configuration Changes
  • IAM-054: IAM Configuration Changes
  • KMS-007: Monitor AWS KMS Configuration Changes
  • Organizations-003: AWS Organizations Configuration Changes
  • RDS-036: Amazon RDS Configuration Changes
  • Route53-009: Amazon Route 53 Configuration Changes
  • Route53Domains-001: Amazon Route 53 Domains Configuration Changes
  • RTM-009: Network configuration change detected
  • S3-022: S3 Configuration Changes
  • SecurityHub-001: Detect AWS Security Hub Configuration Changes