Mr & Mrs BlackHat
Have received the December bill for their credit cards and are off to work.
It is open season on open services as net scum migrate from sacking MongoDB databases to insecure ElasticSearch instances. Some 35,000 mostly Amazon Web Services ElasticSearch servers are open to the internet and to ransoming criminals, Shodan boss John Matherly says. So far more than 360 instances have had data copied and …
I'm assuming they ask for the bitcoin transfer proof. But then again send the money is probably as good as sending the hopeful email without proof. The end result should be the same.
1st one you lose your money and data. But learn a valuable lesson in infosec.
2nd you only lose your data. And still learn the lesson.