2 Answers
- Newest
- Most votes
- Most comments
1
I have the same problem. Amazon authorized an email change for my account without my consent. They want to charge me an invoice of $ 7,884 to my credit card that I had to cancel because they had stolen my data from amazon. The only response I get from AWS is that I do a series of steps that I don't have the knowledge to do. I am completely helpless. Does anyone know where I can report the case?
answered 2 years ago
I have the same problem. AWS support has not been helpful with resolving this, indicating instead that user is responsible for all activities carried out on the account.
1
Please see this KB article: https://aws.amazon.com/premiumsupport/knowledge-center/potential-account-compromise/
Relevant content
- asked 5 months ago
- asked 2 years ago
AWS OFFICIALUpdated 9 months ago- AWS OFFICIALUpdated 2 months ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 6 months ago
Hi MN
If you have access to your account: Set up MFA and reset your credentials and all IAM users that have admin. Please note that MFA only secures your console access (in the browser). Without restricting API access with IAM policies which specifically require MFA access you can still access the API without MFA. I would check for any access keys and delete them as well if believed to be compromised. I would then go to your billing dashboard and disable all the resources that are running and set up billing alerts.
If you do not have access to your account: Reach out to AWS via the following as soon as you can - https://support.aws.amazon.com/#/contacts/aws-account-support
If anyone has more suggestions, please feel free to add to this or correct me if I have missed something.