Severity : Critical
Description : S3 buckets can be configured to allow anyone, regardless of whether they are an AWS user or not, to write objects to a bucket or delete objects. This option should not be configured unless there is a strong business requirement.
Remediation Steps : Disable global all users policies on all S3 buckets and ensure both the bucket ACL is configured with least privileges.