CCC.VPC.TH03: Unauthorized Network Access Through VPC Peering
Threat ID:CCC.VPC.TH03
Title:Unauthorized Network Access Through VPC Peering
Description:
Unauthorized VPC peering connections can allow network traffic between untrusted or unapproved subscriptions, leading to potential data exposure or exfiltration.
Related Capabilities
| ID | Title | Description |
|---|---|---|
| CCC.VPC.F11 | Connectivity Options - VPC Peering | Establishing a private connection between two VPCs to communicate seamlessly. |
External Mappings
| Reference ID | Entry ID | Strength | Remarks |
|---|---|---|---|
MITRE-ATT&CK | T1599 | 0 | - |
Controls
| ID | Title | Objective | Control Family | Threat Mappings | Guideline Mappings | Assessment Requirements |
|---|---|---|---|---|---|---|
| CCC.VPC.C03 | Restrict VPC Peering to Authorized Accounts | Ensure VPC peering connections are only established with explicitly authorized destinations to limit network exposure and enforce boundary controls. | Network Security | 1 | 4 | 1 |