MongoDB

tripwire.com

22,900 MongoDB databases held to ransom by hacker threatening to report firms for GDPR violations

Hackers are once again finding unsecured MongoDB databases, wiping their contents, and leaving ransom demands.

So far, so normal. But what’s different this time is that they’re also threatening to report their victims for violating GDPR.

Read more in my article on the Tripwire State of Security blog.

tripwire.com

Unsecured databases found leaking half a billion resumes onto the net, no password required

A staggering 590 million resumes have leaked from poorly-secured Chinese companies in just the last three months.

Read more in my article on the Tripwire State of Security blog.

bitdefender.com

Popular family tracking app exposed real-time location data onto the internet – no password required

More than 238,000 individuals users have had their family’s real-time location exposed for weeks on end after an app developer left sensitive data exposed on the internet, without a password.

Read more in my article on the Hot for Security blog.

tripwire.com

OCR software firm ABBYY leaks 203,000 customer documents in MongoDB server snafu

ABBYY, the developer of optical character recognition and text-scanning software, left a server containing 142GB of a customer’s scanned documents exposed for anyone on the internet to access, no password required.

Read more in my article on the Tripwire State of Security blog.

bitdefender.com

Oops! This Android keyboard app accidentally leaked 31 million users’ personal details

31 million users of an Android keyboard app have had their email addresses, phone numbers, and precise location exposed through the sheer carelessness of the app’s developer.

Read more in my article on the Hot for Security blog.

bitdefender.com

Hello Kitty, Goodbye database containing 3.3 million users credentials

A database of 3,345,168 Hello Kitty fans has surfaced online, stemming from a misconfigured Sanrio user database that was accessible to anyone in the world.

Read more in my article on the Hot for Security blog.

27,000 MongoDB servers have their data wiped, receive ransom demand for its safe return

Tens of thousands of unprotected MongoDB databases have been taken hostage by hackers, who have wiped data from company servers and are demanding a ransom be paid for the safe return of the information.

Ouch. Here’s what you need to know.

tripwire.com

Hacker grabs over 58 million customer records from data storage firm

And, if you think that sounds bad, there may be yet more hacked data still to be exposed.

Read more in my article on the Tripwire State of Security blog.

Verizon Enterprise suffers its own data breach, 1.5 million customers’ info offered up for sale

It is certainly ironic that Verizon Enterprise – which is well known for its annual report on the latest trends in data breaches – itself experienced a breach.

David Bisson reports.

heatsoftware.com

Sysadmins who fail to change default configurations, leave petabytes of data at risk

Sysadmins – if you don’t change the default settings, there’s a danger that you could be exposing your company’s secret data to the rest of the world.

Read more in my article on the Lumension State of Security blog.