How do I report abuse of AWS resources?

3 minute read

I suspect that AWS resources are used for abusive or illegal purposes and I want to report it to AWS.

Resolution

Use the Report Amazon AWS abuse form to report suspected abuse of AWS resources.

The AWS Trust & Safety team can assist you when AWS resources are implicated in the following abuse types:

Web content/non-copyright intellectual property that's objectionable content hosted on an AWS resource. The content might be a webpage, image, video, or some other form of internet content. Be sure to provide the URL of the content and a brief comment indicating why you believe the content to be abusive. If the content is a video, then also provide the timestamp in the video where the objectionable content can be located.
Email abuse that's an abusive email sent from an AWS resource or spam content hosted on, or sent from an AWS resource. Be sure to provide the full email header and HTML body for investigation.
Network activity that's originating from an AWS resource that causes problematic network traffic. This can be an intrusion attempt, denial-of-service (DoS) attack, port scanning, or any other abusive network activity. Be sure to provide the network logs showing the activity and the source and target IP addresses, ports, and timestamps.
Copyright that's subject to content removal requests regarding the Digital Millennium Copyright Act.

The AWS Trust & Safety uses the information that you provide to investigate and attempt to resolve the incident you have reported.

After submitting your report, you can expect the following:

If more information is needed, then the AWS Trust & Safety team will follow up with you using the email address you provide.
If it's necessary for the investigation of your report, then the AWS Trust & Safety team might share your information.
The AWS Trust & Safety team won't share the details of the investigation.
The AWS Trust & Safety team will notify you when the investigation is concluded.

Reporting using the Report Amazon AWS abuse form allows for a quicker report processing time when reporting single events. If your company system is configured to automatically send abuse reports, then send them to abuse@amazonaws.com. Or, you can email your abuse report to the preceding email, if you're unable to submit your abuse report using the abuse form.

If you're reporting multiple IP addresses, then send a CSV attachment in the format of: IP address, date-time in ISO, and network log line. This format provides quicker processing of your report.

For Government Authorities: For customer information requests, follow the Amazon Law Enforcement Guidelines. AWS Trust & Safety accepts communications in English (preferred) or for the EU authorities, French.

Note: AWS Support can't assist with reports of abuse or questions about notifications from the AWS Trust & Safety team. If you have questions for the AWS Trust & Safety team, then reply directly to their email.

Related information

Contact AWS

How do I stop receiving email spam?

Topics

Management & Governance

Relevant content

Abuse phishing report
rePost-User-8056667
asked 2 years ago
AWS WorkMail Synacor Abuse Report
ALC
asked 7 months ago
email abuse report
ksthira
asked a year ago
Reporting possible EC2 abuse
AlexanderGrasmick
asked a year ago
Email abuse report - Amazon SES
chrad_ama
asked 2 years ago
How do I use the AWS Cost and Usage Report?
AWS OFFICIALUpdated 2 years ago
How do I generate audit reports in AWS Backup?
AWS OFFICIALUpdated 9 months ago
When does AWS release new SOC reports, and how can I download the latest report using AWS Artifact?
AWS OFFICIALUpdated 3 years ago
What do I do when I receive an abuse report from AWS about my resources?
AWS OFFICIALUpdated 2 years ago
Exploring AWS IoT costs with AWS Cost and Usage Reports
EXPERT
Kai Dickman
published 8 months ago