Make sure to install the latest security updates in your instances to fix a Serious vulnerability in sudo (CVE-2021-3156) that will let any user run any command as root without entering a password.
In combination with other less severe security exploits this can in some cases be used to compromise your instances remotely.
Read more about it: https://www.openwall.com/lists/oss-security/2021/01/26/3