By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

My RDS account has been hacked

0

I am getting a message in a read me format that my RDS has been blocked by an anonymous person and I have to pay him 0.01 Bitcoins. Below is the message coming in the table. Please help me with this I have backed up all your databases. To recover them you must pay 0.01 BTC (Bitcoin) to this address: 12XPTNws8FHCCoqakhkx8TqfooyFeYd3GC . Backup List: refer2hire. After your payment email me at sqlrecover471@onionmail.org with your server IP (18.189.144.239) and transaction ID and you will get a download link to your backup. Emails without transaction ID and server IP will be ignored.

Topics
Migration & ModernizationAnalyticsDatabaseCompute
Tags
Amazon Relational Database ServiceAmazon EC2
Language
English
Jeev
asked 5 months ago442 views
1 Answer
0

If you are unable to login use this form to recover access to you aws account: https://support.aws.amazon.com/#/contacts/aws-account-support

If is possible you can restore a snapshot of your RDS instance: https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_RestoreFromSnapshot.html

Please follow the security practices to avoid any unauthorized access to your AWS account: https://docs.aws.amazon.com/prescriptive-guidance/latest/aws-startup-security-baseline/controls-acct.html

Remember always to secure your ports, security groups and set MFA.

Jesus Castellanos
answered 5 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content