Malicious Actor Targets Exposed MongoDB Instances in Automated Data Extortion Attacks

A malicious actor is targeting exposed MongoDB instances in automated data extortion attacks. The attackers delete databases and demand a modest ransom for their restoration. These attacks focus on misconfigured or unsecured MongoDB servers that are publicly accessible without authentication. No details are provided about the exact timeframe or affected regions. The impact includes data loss and payment demands for recovery.