No honor among thieves: Crooks seeking ransom for MongoDB data someone else stole

It took less than a week for criminals to drain virtually all publicly exposed MongoDB servers of their data, and now a second tier of opportunistic thieves is trying to walk off with the ransom.

电脑开着,人却不见了
When attackers initially deleted the data, sometimes terabytes at a time, they left ransom notes demanding payments in bitcoin.
+ ALSO ON NETWORK WORLD Be careful not to fall for these ransomware situations +
In the meantime, other thieves have come along to these still-insecure servers, deleted the initial ransom notes and left their own. And sometimes after that, another thief came along and deleted that note and left yet another.
“There’s a fluctuation and shift in which ransom note is being displayed on the server at any given minute,” says Zach Wikholm, a research developer at Flashpoint.
Not that it matters, he says. The likelihood that any victim of these thefts will ever get their data back is miniscule. It’s relatively easy to find the vulnerable servers, pull down the data and delete it, but to do that and to store it would require time and enormous amounts of storage, he says.
It’s highly unlikely the thieves made that kind of investment. Instead they deleted the data and demanded payment to restore it. “There’s no hope for those who were compromised,” he says.
免费的病毒查杀软件甚至终端安全软件越来越多,它们往往是轻量级的,安全功能不够全面,面向家庭或个人用户,厂商往往希望用户习惯了免费的之后,付费选择功能更强大的产品,所以,多数公司用户还是坚持使用企业级的产品。
It didn’t’ take a large group to commit these crimes. “Pulling this off is within the ability of one person,” says Allison Nixon, Flashpoint’s director of security research. “Now there are multiple bad actors for sure. Opportunists is a good word.”
说到中国的科技创新,大家可能会嗤之以鼻,这都是无奈之举,基础研究落后,创新文化缺乏,只能在科技应用层面,学习领先国家的理念和方法,结合本地的优势,快速来些二次创新,以便占领市场。

猜您喜欢

淳化保障县区食品药品安全有新招
全球化公司大部分已经制定安全意识培训和沟通计划
职业卫生、环境保护、安全生产
女子当初心甘情愿嫁给穷小子 如今却常怨他没用
DRESSUPMIX SUBVETSGROTON
无节操黑客为不良搜索公司蝇头小利而入侵其竞争对手并窃取商业机密