The hackers behind MongoDB databases hacking spree also threatened to inform GDPR officials if the ransom is not paid.
There are several database management systems that exist out there such as AWS, Oracle, MySQL, PostgreSQL, or MongoDB. Although these organizations try their best to keep the infrastructure secure, blunders on users’ side can result in data breaches.
Such was discovered in a recent debacle where through the help of an automated script, a hacker scanned misconfigured databases that were using MongoDB and deleted all of their content (yes all). This was accompanied by a notice asking for a ransom amount of 0.015 Bitcoins which is equivalent to $137.90 currently.
See: Hackers leave ransom note after wiping out MongoDB in 13 seconds
The targeted databases number about 22,900 and statistically make up 47% of all MongoDB databases that are hosted online. These include both staged ones used for testing and live production ones. The misconfiguration, on the other hand, was that they were accessible without any password making it very easy for the attacker to breach their security.
Here is ransom note left by the hackers:
Screenshot of the ransom note – Image: ZDNet
What furthers worsen the situation for all of these database owners is that the threat actor has also threatened to leak the data if not given the amount in 2 days along with reporting the data breach to the concerned GDPR authority.
< ..
Support the originator by clicking the read the rest link below.
