AWS SupportI am a university student at Anyang University, and I have been using AWS services for personal learning purposes. I do not use AWS for commercial purposes; it has been an essential platform for my educational journey.
Recently, our team was developing a mobile application server, utilizing various AWS services, including Amazon S3. Unfortunately, during the development process, we inadvertently left S3 with public access briefly, which resulted in what appears to be an attack on our S3 storage. As a consequence, an unusually high volume of GET requests, approximately 100 million, were made to our storage. This unexpected incident triggered significant charges in three key AWS services: S3, AWS GuardDuty, and AWS Lambda.
I want to emphasize that we had always believed we were using AWS services securely and responsibly. The unexpected surge in charges has left us extremely perplexed and concerned.
Upon discovering the abnormal increase in charges, I took immediate action. I deactivated our existing S3 and Lambda services and enforced strict restrictions on public access to prevent any further unauthorized access. Additionally, to monitor and prevent such instances in the future, I have been actively using AWS Cost Explorer to monitor our billing and usage.
In light of these circumstances, I kindly request a refund for the charges incurred due to this security incident. I understand that AWS takes security seriously, and I believe that the evidence I have attached, which includes proof of the charges resulting from the attack and the abnormal request volume, will support my case.
I would like to thank you in advance for your understanding and consideration of my request. If there is any additional information needed or a formal process to follow for this refund request, please do not hesitate to inform me. I look forward to your prompt response and resolution of this matter.
Thank you for your attention.
Sincerely
