GootKit actors leave open databases, exposing data they stole | SC Media

GootKit actors leave open databases, exposing data they stole | SC Media

The actors behind the information-stealing GootKit trojan apparently slipped up and left open two MongoDB databases last July, briefly exposing data that they had lifted from thousands upon thousands of infected victims.


Bob Diachenko, cyber threat intelligence director at Security Discovery, revealed in a company blog post yesterday that he spotted the open servers last July 5. By July 10, the actors seemed to become aware of the issue and made the data private.


Diachenko found 32 separate collections of data, including ..