🔥 3-day streak
AWS Certified Security - Specialty56 / 184
Question 56 of 184
A security engineer is reviewing a fleet of EC2 instances that run a web application behind an Application Load Balancer. A recent penetration test found that the application is vulnerable to server-side request forgery (SSRF), and the tester was able to retrieve temporary IAM role credentials from the instance metadata service. The engineer must harden the instances to prevent this specific class of credential theft without redeploying the application. Which action most directly mitigates the risk?
Reviewed for accuracy · Report an issueNext question