Researchers: Attackers are targeting thousands of vulnerable servers around the world. Hackers are using ransomware to exfiltrate data from organizations as a way to demand payment before making the information public. In addition to the ransomware and extortion campaign, the hackers are selling access to over 250,000 stolen databases through a darknet market when victims don’t pay. Researchers estimate the attackers generated about $25,000 in ill-gotten returns from about 70 separate attackers using this tactic. The hacking campaign that the Guardicore Labs analysts discovered appears to have started in January.”]
Source: https://www.cuinfosecurity.com/ransomware-attacks-hitting-vulnerable-mysql-servers-a-15581