A selection of this week’s more interesting vulnerability disclosures and cyber security news. No let up from the hackers the past week and so so many things I could talk about such as why are we still using Flash, why are people still falling for macro viruses, but of course, the one that really caused me to look in abject horror is the MongoDB ransom attacks. The horror does not come from the fact that vast amounts of data has been lost but why are they open on the public internet?
I’m not a MongoDB expect, I prefer Elastic (which looks like the next target) and know that if I’m not prompted for any credentials on accessing them, then neither will those that want to hack it. Therefore I would probably want to put something in the way to stop them. Not hard to understand. So why are there so many? I can’t believe its lack of understanding on how to secure a server, many new Linux distros for example default to locking everything down and requiring opening firewall ports up. Perhaps its because these people just don’t care, and I really hope that’s not the case, as that is worse then being clueless.
- MongoDB ransom attacks soar, body count hits 27,000 in hours (The Register)
- Princeton University becomes victim of MongoDB ransom attacks
- How to secure MongoDB because it isn’t by default and thousands of DBs are being hacked (The Register)
Once that horror has subsided, here are some more amazing ones to round of a great week. Enjoy!
- Affiliates able to access databases of ALL Hello Markets brands and CRM data in massive security breach Andrew Saks-McLeod reports
- CSRF/XSS in Responsive Poll allows unauthenticated attackers to do almost anything an admin can (WordPress plugin)
- What do you call a firm that leaves customer financials unencrypted on a hard drive? RSA (The Register)
- Online Or Offline, Ransomware Will Find You The current threat landscape is a mish-mash of online ransomware, offline ransomware, and those that are a mixture of the two.