Ory Segal created a Lambda function that is a security nightmare. Segal says Lambda is remote command execution right into an AWS infrastructure. The only issues that came up were “denial of wallet” attacks, where you can write millions of logs, or execute the function millions of times to cause cost of usage to rise. This, by far, became the biggest headache: putting in preventative controls to ensure that the functionality and purpose of the project were not impaired while maintaining cost control.”]
Source: https://www.darkreading.com/cloud/securing-severless-defend-or-attack-