who is responsible for the ransomware and anti DDOS protection in AWS, is it the customer or the AWS?
Hello, if you are talking about DDOS protection and ransomware on servers that you have deployed on AWS. You will be the responsible.
However, for example, if you are talking about a DDOS protection of AWS API ( I mean the one used to deploy things on AWS), Amazon will take care of it. I highly advice you to take a look to the AWS Shared responsibility Model : https://aws.amazon.com/compliance/shared-responsibility-model/