Register a SA Forums Account here!
JOINING THE SA FORUMS WILL REMOVE THIS BIG AD, THE ANNOYING UNDERLINED ADS, AND STUPID INTERSTITIAL ADS!!!

You can: log in, read the tech support FAQ, or request your lost password. This dumb message (and those ads) will appear on every screen until you register! Get rid of this crap by registering your own SA Forums Account and joining roughly 150,000 Goons, for the one-time price of $9.95! We charge money because it costs us money per month for bills, and since we don't believe in showing ads to our users, we try to make the money back through forum registrations.
The Something Awful Forums > Discussion > Serious Hardware/Software Crap > The Cavern of COBOL > Amazon Web Services - Cloud Giant Hits Hard
 
  • Post
  • Reply
ickna
May 19, 2004

 Just a friendly reminder to turn on MFA if you use AWS. My account was compromised yesterday morning and I wouldn't have caught it if Amazon didn't do checks on unusual activity (like maxing instances in every area). In 3 hours it racked up $2k in usage charges, which they are fortunately making a concession for.

I'm still not sure how they got my password, it was a pretty secure one (random alpha + numbers).

* # ¿ Feb 28, 2017 17:39
  • Quote
Adbot
ADBOT LOVES YOU

# ¿ May 3, 2024 09:08
  • Quote
ickna
May 19, 2004

fluppet posted:

I'd be checking the iam keys rather than the password

I'd checked those, the only one I had created was for one of my EC2 instances to be able to access S3. It was definitely compromised on the root account. It was certainly a wake up call and I've gone to 2FA for as many of my other major accounts across the internet as a result.

* # ¿ Mar 1, 2017 05:21
  • Quote
  • 1
  • 2
  • 3
  • 4
  • 5
  • Post
  • Reply
The Something Awful Forums > Discussion > Serious Hardware/Software Crap > The Cavern of COBOL > Amazon Web Services - Cloud Giant Hits Hard