It's a Meow-nixed system, I know this: Purr-fect storm of 3,000+ insecure databases – and a data-wiping bot Poorly secured databases are being wiped and vandalized by the thousands in a seemingly automated attack. Bob Diachenko, head of research at Comparitech and who spotted the digital destruction, said that, as of today, more than 3,000 insecure database instances have been overwritten to some degree with random text, rendering …
Probably a good social responsible action by the Bot owner, wiping the data and stopping it from being stolen by someone nasty.
I say give them a medal.
If the DB owners don't have backups or suffer as a consequence then that is theor fault for not using basic security which should a functional requirement of every project and should be tested after every code release to make sure nothing has been left open.
Quite destructive though. Just brainstorming a bit.. to improve the socially responsible aspect the bot could encrypt the databases and charge a fee to decrypt. That way the data isn't lost but we also avoid the moral hazard that would result if these white-hats simply returned the data for free and said 'do better next time'.
"If the DB owners don't have backups or suffer as a consequence then that is theor fault ...
Perhaps it is time that we set up an electronic equivalent of the Darwin Award.
Hard on the DBAs but even harder on any clients that they may have. Let's hope that their backups, if any, are in working order otherwise they are stuffed.
"If the DB owners don't have backups or suffer as a consequence then that is theor fault for not using basic security which should a functional requirement of every project and should be tested after every code release to make sure nothing has been left open."
On the other hand, that could apply to every virus and malware writer out there. Yes, things should be secured, especially the blatantly obvious, but that's still no reason to applaud someone who goes around checking peoples front doors and stealing stuff from houses with unlocked doors or shitting in their beds.
Over the years I have come in after the fact (damage over 1200-2400 baud modems - about the time when kids started war dialing numbers to get a modem instead of a fax) and watch some mom and pop businesses shut down having lost everything - their customer list, inventory, orders and custom logic. It is easy to say "you did not have a backup?" as they are watching their business self destructing. Some of these acts influenced my then future career decisions.
I think we are going to be inundated with these type of things. Of course there will be some good out of it - business will half to start hardening their silos. We will probably see Indian corporations form like they did for the year 2000 stuff. Small businesses are rather easy to secure.
Many Mom and Pops these days will be using a managed system, such a Squarespace, a Wordpress or Joomla system, which are pretty easy to secure, so long as you install something like wordfence and UPDATE when prompted, or just don't bother at all and use Facebook or Instagram.
"The attack once again underscores the importance of properly securing network-connected databases, and carefully checking access policies to limit writes and reads as necessary."
No. What it underscores is the importance of having infrastructure and security personnel making sure this sort of thing doesn't happen. PHBs treating them like an unnecessary expense and disposing of them is now coming back to wreak havoc on those respective businesses. Unfortunately those PHBs won't carry the can for it.
I have *literally* just had the same argument about dumb infrastructure decisions affecting security....
Subject: Minute of meeting between PHB and A/C on {DATE}
A/C recommended to PHB that {STUFF} be done/purchased. A/C advised PHB that the consequence of not doing so would be a serious risk of {BAD_STUFF} happening to the business. PHB decided not to do/purchase {STUFF} and that the business would accept the risk of {BAD_STUFF} happening.
Typed on an old-fashioned typewriter with a carbon copy sent to PHB so he knows there's a hard copy of the original secured somewhere. Even better:- accompanied by a receipt of the registered letter which was the original posted by A/C to self.
Whilst I agree with all the comments saying 'serve them right' I believe we should also keep at the forefront of our mind that
It Is The Criminals Fault.
In just the same way as It Is The Criminals Fault if your unlocked house is robbed.
Equally, the fact that such activity can take place is down to the design of the comms. It is no longer beyond our capabilities to run comms and Operating Systems which are intrinsically secure.
Bt I have no idea how you could implement same whilst the USA, China, Russia, etc want to have access to all information, everywhere.
Me? - My fountain pen still works for secure communication.
The Register 
Biting the hand that feeds IT
Copyright. All rights reserved © 1998–2024
