10 AWS Cost Mistakes Startups Make Every Month

Why it happens

Teams provision for peak load that arrives 2% of the time. Lift-and-shift migrations land on the same instance sizes as on-prem - and nobody revisits. AWS Compute Optimizer reports go unread.

How to fix

Enable Compute Optimizer and check CPU + memory for 14 days. Most startups run at 8–15% average CPU - downsize to the next instance family. Right-sizing alone cuts compute costs 30–60% with zero user impact.

Why it happens

"We'll sort commitments later" becomes the permanent state. Confusion between Reserved Instances and Savings Plans leads to inaction. Meanwhile, EC2, RDS, and Fargate run 24/7 on full on-demand pricing.

How to fix

After rightsizing, buy 1-year no-upfront Compute Savings Plans for your steady-state baseline. A 36% discount on on-demand pricing applies automatically across EC2, Lambda, and Fargate. One startup saved $8,600/month from this alone.

Why it happens

Dev and staging environments are provisioned at production-equivalent size for convenience, then left running nights, weekends, and bank holidays. Nobody owns the cost and nobody notices until a budget review.

How to fix

Use AWS Instance Scheduler or a Lambda cron to stop non-production EC2 and RDS outside business hours (8am–8pm weekdays). This cuts non-production compute by ~65%. One startup went from $1,200 to $250/month on staging alone.

Why it happens

Default VPC architectures route all outbound traffic through NAT Gateway. S3 and DynamoDB calls from private subnets add $0.045/GB in processing charges on top of NAT's $0.065/hour baseline. At any scale, this compounds fast.

How to fix

Add free S3 and DynamoDB Gateway Endpoints - these route traffic directly from your VPC without going through NAT. Add Interface Endpoints for ECR and CloudWatch Logs. One team saved $3,200/month from this single change.

Why it happens

Cloud provisioning takes seconds; cleanup is nobody's job. Test EC2 instances from sprints, unattached EBS volumes from terminated instances, load balancers pointing at nothing, and Elastic IPs reserved for instances that no longer exist - all keep billing indefinitely.

How to fix

Run: `aws ec2 describe-volumes --filters Name=status,Values=available` for unattached EBS. Check ALB RequestCount in CloudWatch for 30 days - zero-traffic ALBs at $16–30/month each should be deleted. Enforce Owner and Environment tags to prevent future accumulation.

Why it happens

"S3 is cheap" is true at small scale. At scale, 80% of objects are typically not accessed in 90+ days. Without lifecycle policies, years of backups, logs, and media accumulate at $0.023/GB/month with no automated tiering.

How to fix

Enable S3 Intelligent-Tiering for files accessed unpredictably. Add a lifecycle rule to move files older than 90 days to Glacier Instant Retrieval (67% cheaper). Objects older than 180 days move to Glacier Deep Archive (96% cheaper).

Why it happens

Databases are provisioned conservatively - a db.r5.2xlarge "just in case" - and never touched again for fear of downtime. Performance Insights goes unchecked. Read replicas sit at near-zero query load.

How to fix

Check RDS Performance Insights for CPU and memory utilisation over 14 days. A db.r5.2xlarge running at 6% CPU and 18% memory can be safely downgraded to a db.r6g.xlarge (Graviton) - which is both cheaper and faster. Migrate storage from gp2 to gp3 for a free 20% saving.

Why it happens

Teams skip tagging in the early days and never retrofit it. Without Owner, Environment, and Service tags, there's no cost attribution by team or product. Nobody sets AWS Budgets alerts, so the first signal is a shocking invoice.

How to fix

Implement 3–5 mandatory tags: Owner, Environment, Service, CostCentre. Activate them as cost allocation tags in the Billing console. Set budget alerts at 80% actual and 100% forecasted. Enable AWS Cost Anomaly Detection - free, catches spikes within 24 hours.

Why it happens

CloudWatch log groups default to "never expire". Verbose DEBUG-level logging in production generates gigabytes daily at $0.50/GB ingestion. ALB access logs routed to CloudWatch cost 20× more than routing them to S3.

How to fix

Set log retention on every log group - 30 days for production, 7 days for non-production. Switch logging level from DEBUG to INFO. Route ALB and VPC Flow logs to S3, not CloudWatch. Move custom metrics to self-hosted Prometheus on a t3.medium ($30/month).

Why it happens

A one-time cost sprint saves 30–40%, then costs drift back as new resources are provisioned without cost awareness. Reserved Instances expire silently and revert to on-demand. No FinOps process means no one catches the creep until the bill is already up 40%.

How to fix

Set up monthly cost reviews using Cost Explorer by team or service. Schedule automated alerts for any spend increase greater than 20% month-over-month. Track Savings Plans coverage - below 70% means you're leaving money on the table.