Security News > 2020 > December > Ransomware Gang Hits Exposed MySQL Databases
2020-12-10 19:53
Exploiting weak credentials on MySQL servers connected to the Internet, an ongoing ransomware campaign has compromised more than 250,000 databases to date, according to a warning from security vendor Guardicore.
With more than five million Internet-facing MySQL servers on the internet, the attacks are expected to continue against those with weak authentication credentials.
Onion, where the attackers list all databases for which a ransom was not paid.
The attackers gain access to the targeted databases by brute-forcing the passwords for the MySQL servers.
On their TOR website, the attackers offer the stolen databases for sale at 0.03 Bitcoin.