The GCP Cloud Storage security scan on Vectrix detects a variety of Cloud Storage security risks in a connected GCP organization or project that could be leaving you and your customers' data vulnerable. This includes bucket misconfigurations, SOC 2 compliance violations, and other issues.
Scan on-demand to detect active Cloud Storage security issues that you have.
Monitor continuously to get alerted about new Cloud Storage security issues in the future.
Don't know how Cloud Storage works? Read more below.
What this scan detects
A publicly-accessible Cloud Storage bucket could be problematic as objects (files) stored in the bucket are now potentially accessible by anyone on the internet.
Buckets with access logging disabled
A Cloud Storage bucket with server access logging disabled could be problematic as bucket access logs are not collected, meaning that any modifications or improper access would not be recorded for later review.
Buckets with versioning disabled
A Cloud Storage bucket with versioning disabled could be problematic as bucket objects (files) of different versions aren't preserved, meaning any modified objects will overwrite their previous version.