MongoDB, the cross-platform database company, is the latest victim of a cyber attack. This attack infiltrated 22,900 unsafe databases and deleted their content. The gang behind the attack requested payments in Bitcoin (BTC) in return for securing the data.
According to WeLiveSecurity from cyber security company ESET If the ransom is not paid within two days, the hacker or gang of cybercriminals threatens to notify the authorities responsible for enforcing the European Union’s General Data Protection Regulation (GDPR).
A report published by ZDNet explains this The number of databases at risk from the “Wiping Ransom” attack makes up almost 47% of all MongoDB databases.
Hackers claim a total of more than USD 3.2 million
The hackers used an automated script to scan each database and left a ransom note, each demanding 0.015 BTC or about $ 140.. The hackers also included a guide that explains to the victims how to buy the necessary Bitcoin.
Victor Gevers, a security researcher at the GDI Foundation, said:
“The first time the attacks were launched, the data erasure feature was missing. When the culprit noticed the error in his script, he changed it and started deleting the MongoDB database attacks with this ransom note.”
Total, Hackers are looking for around $ 3.2 million from MongoDB.
In June the ransomware group REvil launched a series of attacks against three companies in the United States and Canada. They later leaked data from two companies and threatened to disclose sensitive data from the third company.
Do not stop reading: