MongoDB - Security Intelligence

Parent using a family tracking app that was affected by a data leak

news

Data Leak Involving Family Tracking App Exposed 238,000 Users’ Real-Time Locations for Weeks

A data leak involving a family tracking app exposed the real-time locations of more than 238,000 users for weeks as a result of a database misconfiguration.

March 27, 2019 | By David Bisson

news

Professional at work realizing her information was exposed in an email leak

news

More Than 2 Billion Unencrypted Records Exposed in Major Email Leak

A recent security incident that began as an email leak exposed more than 2 billion records containing email addresses and other personal information.

March 11, 2019 | By David Bisson

news

news

Resurgent Malware Attack Targets MongoDB

Security researchers uncovered a concentrated malware attack against MongoDB servers that is reminiscent of previous attacks from earlier this year.

September 6, 2017 | By Larry Loeb

news

news

Researchers Detect New Attacks Against MySQL Database

Analysts found that MySQL databases had been attacked by a ransomware campaign similar to the one that affected MongoDB databases in January.

February 28, 2017 | By Larry Loeb

news

article

Get Serious About Data Protection to Secure MongoDB

MongoDB offered a set of security best practices to help users protect their databases from cybercriminals looking to exploit misconfigured servers.

January 25, 2017 | By Kathryn Zeidenstein

article

An IT worker responding to a crisis in a data center.

news

Missing Security Plus Malicious Attacks Equals Massive MongoDB Servers Breach

Cybercriminals leveraged poor password hygiene among users and administrators to compromise nearly 30,000 databases on MongoDB servers.

January 10, 2017 | By Douglas Bonderud

news

A MongoDB database offers a number of benefits for users, but it can also be exposed to any cybercriminal on the Internet if users don't make it a point to prioritize security. This starts with opting in to certain measures provided by hosting agents.

news

MongoDB Databases May Be Exposed by Security Misconfigurations

A security researcher has discovered that thousands of MongoDB databases are publicly exposed on the Internet, creating vulnerabilities for organizations.

December 21, 2015 | By Larry Loeb

news

A lack of security tools for NoSQL databases could be enough to keep developers up at night. Rather than have dream apps turn into a nightmare, use the right security tools to harden databases and protect all critical data from exposure.

article

Dream Apps or Database Security Nightmare? No Excuses for Lax NoSQL Security

Don't let your NoSQL database security — or lack thereof — keep you up at night. Instead, work on securing your dream apps throughout development.

November 18, 2015 | By Bryan Reinero

article

MongoDB is a popular open-source database resource for many organizations, but these enterprises may be unaware that they're putting big data into the hands of cybercriminals thanks to unresolved vulnerabilities in the database security structure.

news

Insecure Configuration of MongoDB, Other Databases Could Be Leaking Information

A recent report suggested poor configurations of MongoDB, Redis and similar database products may be exposing data to cybercriminals.

August 18, 2015 | By Shane Schick

news

MongoDB is one of the most popular choices for organizational database needs, but enterprises may want to rethink their practices after more than 30,000 instances were found to be accessible online without authentication due to faulty operations.

news

About 30,000 Instances of MongoDB Exposed on Web, Security Researcher Says

Some 30,000 instances of MongoDB are accessible over the Internet because of a failure by database administrators to properly configure them.

July 23, 2015 | By Jaikumar Vijayan

news

Fake Android Apps Steal Cryptocurrency Credentials With 2FA Bypass Technique

TCP SACK Panic Flaw Could Compromise Production Linux Machines

Free Decryption Tool Enables Victims of GandCrab Ransomware to Recover Their Files

Outlaw Threat Group Using Botnet to Distribute Monero Miner, Perl-Based Backdoor

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

IoMT Security: A Comprehensive Approach to Mitigate Risk and Secure Connected Devices

High Stakes, Rising Risks: The Ripple Effects of Cybersecurity in the Healthcare Sector

Industrial Control Systems Security: To Test or Not to Test?

Critical RCE Vulnerability in TP-Link Wi-Fi Extenders Can Grant Attackers Remote Control

One Big Lesson From the Cyber Range to Help Solve Confirmation Bias

Observations of ITG07 Cyber Operations

Getting Quantum Ready and What This Means for Cryptography

Podcast: Reducing Third-Party Risk

Podcast: Development Agility and Open-Source Vulnerability Prioritization

Podcast: Lateral Movement: Combating High-Risk, Low-Noise Threats

Podcast: Travel Security: Why Data Safety Doesn’t Get a Day Off

Webinar: How to Outmatch Data Security Challenges with Cost-Effective, Practical Strategies

Webinar: Total Recon: See You Online, Richter

Digital Identity Trust at Cyber Week 2019 – Tel Aviv, Israel

Webinar: IBM i2 User Group Webinar: Advance Your Existing i2 Capabilities

Tag: MongoDB

Data Leak Involving Family Tracking App Exposed 238,000 Users’ Real-Time Locations for Weeks

More Than 2 Billion Unencrypted Records Exposed in Major Email Leak

Resurgent Malware Attack Targets MongoDB

Researchers Detect New Attacks Against MySQL Database

Get Serious About Data Protection to Secure MongoDB

Missing Security Plus Malicious Attacks Equals Massive MongoDB Servers Breach

MongoDB Databases May Be Exposed by Security Misconfigurations

Dream Apps or Database Security Nightmare? No Excuses for Lax NoSQL Security

Insecure Configuration of MongoDB, Other Databases Could Be Leaking Information

About 30,000 Instances of MongoDB Exposed on Web, Security Researcher Says