After MongoDB attack, ransomware groups hit exposed Elasticsearch clusters

Click here to visit Original posting

After deleting data from thousands of publicly accessible MongoDB databases, ransomware groups have started doing the same with Elasticsearch clusters that are accessible from the internet and are not properly secured.

Elasticsearch is a Java-based search engine that's popular in enterprise environments. It's typically used in conjunction with log collection and data analytics and visualization platforms.

The first report of an Elasticsearch cluster being hit by ransomware appeared on the official support forums on Thursday from a user who was running a test deployment accessible from the internet.

To read this article in full or to leave a comment, please click here

After MongoDB attack, ransomware groups hit exposed Elasticsearch clusters

ICYMI: the week’s 8 biggest tech stories from the Oura Ring 4 to the Verzion network outage

What is Px?

Persistent malware WordDrone exploits DLL Side-Loading to compromise Taiwan’s drone industry

India gearing up to be AI powerhouse as data center giant pledges $3.2 billion investment to add 550MW of capacity by 2030