Stories
Slash Boxes
Comments

SoylentNews is people

posted by martyb on Thursday July 23 2020, @08:22PM   Printer-friendly
from the script-kitties dept.

Ongoing Meow attack has nuked >1,000 databases without telling anyone why:

More than 1,000 unsecured databases so far have been permanently deleted in an ongoing attack that leaves the word "meow" as its only calling card, according to Internet searches over the past day.

The attack first came to the attention of researcher Bob Diachenko on Tuesday, when he discovered a database that stored user details of the UFO VPN had been destroyed. UFO VPN had already been in the news that day because the world-readable database exposed a wealth of sensitive user information[...]

[...] Besides amounting to a serious privacy breach, the database was at odds with the Hong Kong-based UFO's promise to keep no logs. The VPN provider responded by moving the database to a different location but once again failed to secure it properly. Shortly after, the Meow attack wiped it out.

Since then, Meow and a similar attack have destroyed more than 1,000 other databases. At the time this post went live, the Shodan computer search site showed that 987 ElasticSearch and 70 MongoDB instances had been nuked by Meow. A separate, less-malicious attack tagged an additional 616 ElasticSearch, MongoDB, and Cassandra files with the string "university_cybersec_experiment." That attackers in this case seem to be demonstrating to the database maintainers that the files are vulnerable to being viewed or deleted.

[...] In other cases—including the current Meow attacks—the data is simply wiped out with no ransomware note or any other explanation. The only thing left behind in the current attacks in the word "meow."


Original Submission

 
This discussion has been archived. No new comments can be posted.
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
  • (Score: 2) by Runaway1956 on Thursday July 23 2020, @09:50PM (9 children)

    by Runaway1956 (2926) Subscriber Badge on Thursday July 23 2020, @09:50PM (#1025556) Journal

    Wipe out the NSA's databases. And, the FBI, and CIA, the DOD, and all the rest of the alphabet soup in Washington.

    Starting Score:    1  point
    Karma-Bonus Modifier   +1  

    Total Score:   2  
  • (Score: 4, Insightful) by Mojibake Tengu on Thursday July 23 2020, @10:03PM (6 children)

    by Mojibake Tengu (8598) on Thursday July 23 2020, @10:03PM (#1025562) Journal

    You cannot wipe theirs every now and then.
    It is much more effective to continuously feed their probes with irrelevant data, which they themselves put into their funny databases.
    Adds costs to data ownership.

    --
    Respect Authorities. Know your social status. Woke responsibly.
    • (Score: 2) by Thexalon on Friday July 24 2020, @03:20AM (4 children)

      by Thexalon (636) on Friday July 24 2020, @03:20AM (#1025654)

      So you've just changed which line-item in the vast classified budget of the organizations running the government database gets slightly more money? That doesn't help, say, an agent using the data illegally to track down their ex.

      --
      The only thing that stops a bad guy with a compiler is a good guy with a compiler.
      • (Score: 1) by khallow on Friday July 24 2020, @05:15AM

        by khallow (3766) Subscriber Badge on Friday July 24 2020, @05:15AM (#1025670) Journal
        It doesn't cure cancer either. Guess we shouldn't do it then.
      • (Score: 2) by Mojibake Tengu on Friday July 24 2020, @06:34PM (1 child)

        by Mojibake Tengu (8598) on Friday July 24 2020, @06:34PM (#1025882) Journal

        Costs is not about money at all.
        Storage, backup, seek, even just a mark as irrelevant and dismissal, every operation with particular information consumes real resources.
        As real, as energy, time, space, material and real people is real.
        While you can throw an inductively infinite amount of artificially created money on any government project, you never have an infinite amount of real resources.
        A curse of growth. Ask CIA Google why they had to bury a G+.
        That's the meaning of costs I had on my mind.

        --
        Respect Authorities. Know your social status. Woke responsibly.
        • (Score: 0) by Anonymous Coward on Friday July 24 2020, @08:41PM

          by Anonymous Coward on Friday July 24 2020, @08:41PM (#1025926)

          Taxpayers will cover that.

      • (Score: 2) by Azuma Hazuki on Saturday July 25 2020, @12:44AM

        by Azuma Hazuki (5086) on Saturday July 25 2020, @12:44AM (#1026029) Journal

        Oh, I don't know :) Done correctly, hard enough, and randomly enough that it can't be algorithm'd around, Bayesian Poisoning (the proper name for this sort of thing) could be very effective indeed. If the Alphabet Soup Brigade wants to slurp our data, by all means, crank that firehose on full force until they explode.

        --
        I am "that girl" your mother warned you about...
    • (Score: 2) by Bot on Sunday July 26 2020, @09:28AM

      by Bot (3902) on Sunday July 26 2020, @09:28AM (#1026505) Journal

      >feed their probes with irrelevant data

      so, facebook IS an useful site, after all.

      --
      Account abandoned.
  • (Score: 2) by EJ on Thursday July 23 2020, @10:03PM (1 child)

    by EJ (2452) on Thursday July 23 2020, @10:03PM (#1025563)

    They're only wiping out the databases of stupid people who deserve it.

    • (Score: 2) by DECbot on Friday July 24 2020, @04:28PM

      by DECbot (832) on Friday July 24 2020, @04:28PM (#1025832) Journal

      They're only wiping out the databases of stupid people who deserve it.

      According to your argument, the three letter agencies should already had their databases wiped; unless you are arguing that maintaining government databases provides them with qualified immunity. (Alright, yes the DBAs that operate the database may be brilliant and competent admins, but if those databases were managed by the political sock-puppet appointees that speak for those organizations.... you know, the same ones that want to mandate backdoors in crypto...)

      --
      cats~$ sudo chown -R us /home/base