AWS Certified Solutions Architect – Professional — Question 115

One of the AWS account owners faced a major challenge in June as his account was hacked and the hacker deleted all the data from his AWS account. This resulted in a major blow to the business.
Which of the below mentioned steps would not have helped in preventing this action?

Answer options

• A. Setup an MFA for each user as well as for the root account user.
• B. Take a backup of the critical data to offsite / on premise.
• C. Create an AMI and a snapshot of the data at regular intervals as well as keep a copy to separate regions.
• D. Do not share the AWS access and secret access keys with others as well do not store it inside programs, instead use IAM roles.

Correct answer: C

Explanation

Option C is the correct answer because while creating AMIs and snapshots is a good practice for data recovery, it does not prevent unauthorized access or data deletion from occurring. On the other hand, options A, B, and D are preventive measures that enhance security and data protection, thereby helping to avoid such incidents.