Over 26,000 Kibana Instances Found Exposed on the Internet, according to a new report. Most of the open-source analytics and visualization platform is reportedly unprotected. U.S. is top in the list of affected countries, followed by China (7,282), Germany (1,709) and France with 1,152 open instances. A large number of servers are running outdated versions of the software that contains an arbitrary file inclusion vulnerability in its Console plugin that allows remote attackers to execute malicious javascript.
Source: https://thehackernews.com/2019/04/kibana-data-security.html