Last week, several reports cited the unauthorized access to corporate databases through vulnerable platforms. The extortionists are demanding payments in exchange for the data, but apparently most data was not being returned upon payment of those ransoms. The initial attacks targeted databases running on MongoDB and then copycat attacks occurred on Elasticsearch servers.
Our partners at BitSight alerted us to this matter and will continue to monitor and offer updates. Feel free to share this alert with your data security team as well as your clients’ risk managers, in the event those networks use either of these resources. Both MongoDB and Elasticsearch offer instructions guiding developers on configuring their environments to minimize exposure.
At OneBeacon Technology, our goal is helping to minimize risk and providing information technology coverages for a broad range of exposures including cybersecurity. For further details on how we can assist, please contact your local OneBeacon underwriter or David Molitano or 617.725.6203, who leads our cyber risk practice.