The AWS Lambda security scan on Vectrix detects a variety of Lambda security issues in a connected AWS account that could be leaving you vulnerable. This includes Lambda misconfigurations, over-permissioning, suspicious activity, and other security issues.
Scan on-demand to detect active Lambda security issues that you have.
Monitor continuously to get alerted about new Lambda security issues in the future.
Don't know how AWS Lambda works? Read more below.
What this scan detects
Lambda functions with admin permissions
Having Lambda functions with administrator permissions can be problematic as the function can potentially be leveraged maliciously to access, modify, and delete data and configurations across your AWS account.
Deletion of a Lambda function
Deletion of a Lambda function could be problematic as it is a potential warning sign of unauthorized activity in your AWS account. Use Monitoring to receive this finding.
Lambda functions with cross-account access
Lambda functions with cross-account access can be problematic given that other AWS accounts can access and execute the Lambda function. This presents a security risk as cross-account access, even when granted securely, can be used maliciously should access fall into the hands of a bad actor.
Lambda functions sharing an IAM role
Using a single IAM role to execute multiple Lambda functions can be problematic as it often requires granting multiple different permissions to a single role, widening the security incident blast radius should access to the Lambda function (and therefore IAM role) fall into the wrong hands.