Three German students have discovered that tens of thousands of MongoDB databases running as a service or website backend were exposed on the Internet. MongoDB is a cross-platform document-oriented database which uses. documents with dynamic schemas (BSON) improving the integration of data between different applications. The German Team of experts reported that they were able to to get read and write access to the unsecured and vulnerable MongoDB. databases without using special hacking tools. The list of vulnerable and accessible database includes one belonging to an unnamed French telecommunications company that contains 8 Million customers phone numbers and addresses.”]
Source: https://securityaffairs.co/wordpress/33487/hacking/40000-vulnerable-mongodbonline.html