Share
Sign up for Prowler Updates
New checks and engine updated to v3.4
ProwlerPro is now using Prowler Open Source as scanner engine v3.4 and new checks are added.
New services covered like Organizations best practices, SSM Incidents, Resource Explorer, Backup, additional checks for CloudTrail, ECR scan on push check updated, GuardDuty, VPC best practices, IAM. Now iam_policy_no_administrative_privileges has been renamed to iam_customer_unattached_policy_no_administrative_privileges and the following new important IAM checks:
- iam_aws_attached_policy_no_administrative_privileges: Ensure IAM AWS-Managed policies that allow full “:” administrative privileges are not attached – iam [high]
- iam_customer_attached_policy_no_administrative_privileges: Ensure IAM Customer-Managed policies that allow full “:” administrative privileges are not attached – iam [high]
- iam_customer_unattached_policy_no_administrative_privileges: Ensure IAM policies that allow full “:” administrative privileges are not created – iam [low]
Recent Articles
CSPM for GCP: Securing Your Google Cloud Environment with Modern Cloud Security Posture Management
Modern organizations rapidly embrace the Google Cloud Platform for its scalability, innovation capabilities, and cost-effectiveness. However, this digital transformation comes with a critical challenge: maintaining robust security across increasingly complex...
Prowler’s State of Cloud Security Report 2025
https://youtu.be/S8nLoxgrc5o Rajiv Taori and Laura Franzese walk through the findings of the 2025 State of Cloud Security Report We've been in this industry long enough to know that survey data...
Prowler Cloud: The Most Affordable, Effortless Way to Scale Cloud Security
Cloud security should be simple, cost-effective, and able to grow with your business. Prowler Cloud delivers all of this and more, offering the industry’s lowest total cost of ownership and an architecture...