A new botnet used for stealing commercial online banking credentials relies on database-as-service platforms for command-and-control and storage of stolen booty. Researchers call it a warning sign of the very real potential for targeted attacks on databases by outside attackers. The malware ultimately could be used to directly attack databases as well, the researchers say. The new malware discovery by Imperva highlights the inherent dangers of putting sensitive data in the cloud, Gartner analyst says. Cloud-based databases typically are not scanned for malicious content, he says.”]
Source: https://www.darkreading.com/attacks-breaches/cybercriminals-now-elisting-database-cloud-services