Account hacked, still charged with bill
I created an AWS account 3 years ago for a college class then never used it since. In December I got an email saying there was potential fraud usage on my account and I saw that I had a $7,400 bill charged. I followed the instructions on the email and changed my password and submitted a ticket to report the fraud usage. After going through and deleting the instances that were created they sent my case to the billing team. After a few days they reviewed it and said that they can do an adjustment of just under $6,000 as a once off, meaning that I still have over $1,000 that I would have to pay. I asked if there was any way I could dispute the charges and they said no and closed the ticket. I've reopened another ticket to further dispute these.
There are numbers of other forum posts saying that users had entire fraud charges cleared, why would mine only be part of the charge? What determines the adjustment that they came up with? You can see in my account that nothing was used for the past 3 years and a random spike in thousands of dollars while my billing information was out of date.
Wow that is a tough one. My only comment is that you make sure that you have MFA enabled now in the account and that your password is at least 48-64 characters. You don't want a repeat of the situation.
Relevant questions
My AWS account has been hacked over a week and the support ticket is "unassigned". Billing charges are still being generated and I have no support to stop it from AWS.
asked 5 months agoRegistered for aws sagemaker studio but not able to create account
asked 7 days agoI Can't send a email with my AWS account
asked 18 days agoCombining two accounts that once had consolidated billing
asked 2 years agoAccount hacked, still charged with bill
asked 4 months agoHow to find out the original creator of an AWS account
asked a month agoget root login to my iAM user
asked 5 months agoAWS Organization account has consolidated billing but got multiple invoices?
asked 23 days agoUnable to update the email address of a AWS Account under AWS Organizations
asked 4 months agocan not remove account from organization
asked 3 years ago
I plan on completely deleting my account after this is resolved. Until the I have changed my password and enable 2FA so it shouldn't happen again but I still have the bill that I have to fight.