Hacker is wiping out unsecured MongoDB databases, but keeping a copy of those databases for asking administrators a ransom of 0.2 Bitcoins (nearly US$211) to return the lost data. Security researcher and co-founder of the GDI Foundation Victor Gevers discovered the attacks and notified exposed non-password-protected MongoDB installations to owners via Twitter. Gevers identified nearly 200 instances of a MongoDB installation that’s been erased and held for ransom, while this number reached approximately 2,000 databases as of 4:00 p.m.
Source: https://thehackernews.com/2017/01/secure-mongodb-database.html