CCC.VPC.TH04: Lack of Network Visibility due to Disabled VPC Flow Logs
Threat ID:CCC.VPC.TH04
Title:Lack of Network Visibility due to Disabled VPC Flow Logs
Description:
VPC subnets with disabled flow logs lack critical network traffic visibility, which can lead to undetected unauthorized access, data exfiltration, and network misconfigurations. This lack of visibility increases the risk of undetected security incidents.
Related Capabilities
| ID | Title | Description |
|---|---|---|
| CCC.VPC.F16 | Flow Logs | Ability to capture information about the IP traffic going through the VPC. |
External Mappings
| Reference ID | Entry ID | Strength | Remarks |
|---|---|---|---|
MITRE-ATT&CK | T1562 | 0 | - |
Controls
| ID | Title | Objective | Control Family | Threat Mappings | Guideline Mappings | Assessment Requirements |
|---|---|---|---|---|---|---|
| CCC.VPC.C04 | Enforce VPC Flow Logs on VPCs | Ensure VPCs are configured with flow logs enabled to capture traffic information. | Network Security | 1 | 4 | 1 |