TF 0108 - SymbioticSec/Symbiotic-Vulnerability-Database GitHub Wiki
Buckets should have MFA deletion protection enabled.
| Property | Value |
|---|---|
| Language |  |
| Severity |  |
| Service | s3 |
| Provider | AWS |
Description
Adding MFA delete to an S3 bucket, requires additional authentication when you change the version state of your bucket or you delete an object version, adding another layer of security in the event your security credentials are compromised or unauthorized access is obtained.
Resolution
Enable MFA deletion protection on the bucket