Home / Uncategorized / Ransomware takes a nasty turn

Ransomware takes a nasty turn

Another open source database has been targeted for attack. Just this time, paying the ransom isn’t even an option. Rather, the wrongdoers simply ruin the database, often leaving a nasty message prior to moving on. This makes these attacks a very odd subcategory of “ransomware.”

Just weeks after the attacks began on BongoDB, the brand-new attacks were reported by Fidelis Cybersecurity simply recently. Fidelis is approximating that 8,000-10,000 setups around the world may be affected.What is Hadoop?Hadoop is a framework handled by the Apache Software application Structure that enables the dispersed processing of large information sets across clusters of computers using simple programs models. It cab scale as much as countless systems– supplying a severe level of schedule. Like MongoDB, its default security configuration leaves much duty to those implementing it.Help for carrying out and protecting Hadoop is available at a number of sites

such as these: Guidance on securing Hadoop from Securosis. Undoubtedly since of its capability to handle substantial collections of information, it was called after an elephant– really a toy elephant. And that elephant still appears to be around.Nature of the attacks In one case, database directory sites were attached and a single

directory site named”NODATA4U_SECUREYOURSHIT “was left in their place. The inspiration for the attacks appears unclear except to cause issues for the targeted sites.The factors the attacks are working appear to be painfully familiar.Minimal security by default and

implementors not putting in the time to carry out correct security– gain access to without authentication being a dominant problem Compulsory exposure through the platform-as-a-service model A rejection of gain access to attack method Refer to the information on ThreatGeek for more details.This article

is released as part of the IDG Contributor Network. Wish to Join?