Single day Firebase bill for $100k
a year ago
- #Cloudflare
- #Firebase
- #Security
- Firebase projects should not be left unattended to prevent security breaches.
- A hacker exploited an uncached object via Cloudflare, leading to over 100 million hits.
- Direct attacks on the origin bucket occurred after initial mitigation efforts.
- Cloudflare Workers can secure private bucket storage but incur costs per instance/minute.
- Default settings may lack rate limiting, posing a financial risk if misconfigured.
- The user decided to discontinue cloud services due to high financial risks.