Reply to post: Re: Had it coming...

MongoDB ransom attacks soar, body count hits 27,000 in hours

Hans 1
Facepalm

Re: Had it coming...

>they are shipping a product on CentOS 5.7, of course with an out-of-date MySQL package. To top it off, they are using the default root password for MySQL, and they "can't" change it because it was hard coded throughout their products. Yes, they also have passwords in plain text.

How do they find customers ? Care to name the shame ? Whistleblower and all that ...

> and they "can't" change it because it was hard coded throughout their products.

This also means they do not have a central database connection component in their solution, which probably means "very poorly written code".

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2021