Instance snapshots may be created or shared with insufficient access restrictions or retention controls. This can result in unauthorized access to snapshot data containing workloads, credentials, or configuration state, potentially impacting data confidentiality and system integrity.
Compute / Virtual Machines / Threats / DEV
Instance Snapshots Expose Sensitive Data
CCC.VM.TH12
Related Capabilities
| ID | Title | Description |
|---|---|---|
| CCC.VM.CP17 | Instance Snapshots | Creation of snapshots of virtual machine instances to capture and preserve state and data for backup and cloning purposes. |
External Mappings
| Framework | ID | Remarks |
|---|---|---|
| MITRE-ATT&CK | T1537 | Transfer Data to Cloud Account |