The number of hijacked MongoDB servers held for ransom has skyrocketed from 10,500 to over 28,200 in the past two days. The surge was driven by the involvement of a professional ransomware group known as Kraken Ransomware. The professional group is behind around 56% of all ransacked MongoDB instances. The group, which asks for ransoms between 0.1 and 1 Bitcoin, has made $6,220 in 3 days of hijacking attacks. At the time of writing, the group’s Bitcoin wallets received 70 ransom payments from their nearly 16,000 infected victims.
Source: https://www.bleepingcomputer.com/news/security/mongodb-apocalypse-professional-ransomware-group-gets-involved-infections-reach-28k-servers/