Gregory's Server@stefano There are lots of topics and classics in this story!
A WP plugin allowed remote code execution, it uses unmonitored autoscaling in the cloud, and dev team decides "we need moar power!". Classics on top of classics!
I believe this have to happen like every day around the world.
Now, I'd like to point that is not that Alpine/Linux is less secure than FreeBSD. It's just more popular, so vulnerable WP plugins execute Linux binaries if they can.
I am a firm defender of both cloud and self-host. In one hand, It's very hard to have the physical security and electrical/network redundancy of an actual datacenter. On the other hand, no cloud provider will offer truly data ownership, sovereignty and vendor independence . So, both approaches have their places.
I've seen AWS billings that would buy very nice hardware, every month. And salaries of "cloud experts" are no cheaper that old-school sysadmins. Specially if you have to pay their cloud certifications too.
I hope that manager learned the lesson.
@release_candidate Alpine Linux is perfectly fine (it's one of my favourite distributions).
I think that the "half way" solution is: get a server (maybe leased) inside a reliable datacenter but keep the control of the entire workflow. So you also know how to keep full and reliable backups of your data.