I once had a painful lesson regarding this issue. When I was still learning AWS, I somehow (stupidly) committed my AWS credentials to github, then I forgot about it and left it for a year. Next year when I access my AWS account, to my surprise I've been charged almost 6k USD for doing nothing. Luckily after contacting their support, they kindly drop the amount seeing that I have enough evidence indicating my credentials have been compromised. So these steps you're suggesting, I've been doing some of it ever since.
For further actions, you may consider blocking this person and/or reporting abuse
We're a place where coders share, stay up-to-date and grow their careers.
I once had a painful lesson regarding this issue. When I was still learning AWS, I somehow (stupidly) committed my AWS credentials to github, then I forgot about it and left it for a year. Next year when I access my AWS account, to my surprise I've been charged almost 6k USD for doing nothing. Luckily after contacting their support, they kindly drop the amount seeing that I have enough evidence indicating my credentials have been compromised. So these steps you're suggesting, I've been doing some of it ever since.