[Important] Domestic CNAPP "Cloudbase" Supports AWS Compliance with "PCI DSS v4.0.1" and Adds Related Misconfiguration Diagnostic Items

Cloudbase Inc. has announced the commencement of support for the latest international security standard, "PCI DSS v4.0.1," for AWS environments within its cloud security platform, "Cloudbase." With the increasing prevalence of cashless payments demanding more advanced security management, we aim to assist Japanese companies in rapidly achieving secure cloud operations in accordance with the latest standards. This update introduces six new diagnostic items and maps the existing 136 items to PCI DSS v4.0.1, enabling security assessments based on the most current international standards. Development Background At Cloudbase, we have been providing compliance check functions that adhere to the international security standard "PCI DSS" for protecting credit card information to our customers, including financial institutions. We have heard from our customers that the previous "PCI DSS v3.2.1" has become outdated and is no longer capable of addressing the latest risks. Cloudbase emphasizes not only meeting standards (Compliance) but also practical risk elimination (Security). By promptly adapting to the latest v4.0.1, we aim to create an environment where customers can identify "risks that need to be addressed now" without hesitation and ensure fundamental security. Update Details 1. Addition of New Diagnostic Items (6 items) Based on AWS Security Hub controls, the following diagnostic items have been newly added: AWS Security Hub Control Number AWS Security Hub Severity Cloudbase Category Cloudbase Title Cloudbase Severity Reason for Severity Change Inspector.1 HIGH Inspector EC2 scan is not enabled in Amazon Inspector INFO Cloudbase provides work