Security researchers have revealed an extremely complex cryptojacking attack dubbed RedisWannaMine. Researchers say RedisWannaMine is aimed at both database servers and application servers.
The Sacramento Bee newspaper in the US deleted two databases hosted by a third party after a ransomware attack exposed the voter records of 19.5 million voters and 53,000 current and former subscribers to the newspaper.
Choosing the right NoSQL provider is paramount. Built in security, rather than tacked on as an afterthought, can help take the onus off the developer and may make the difference between being breached or not.
India's national ID database containing the information of nearly 1.2 billion people was breached with cyber-criminals selling access to the information for US$ 8 (£6), though officials deny the extent of the incident.
After the developer of virtual keyboard app Ai.Type left a 577GB Mongo-hosted database unsecured, personal data on more than 31 million customers was exposed to anyone who has an internet connection.
Hundreds of MySQL databases have been subject to ransomware attacks with hackers deleting data and replacing them with a ransom demand for 0.2 bitcoin.
The widespread and ever-evolving Cerber ransomware has upped its game as it targets enterprises with a new capability to encrypt database files.
White-hat researcher claims to have found the credentials of 25 million people - including 13 million MacKeeper users and 5,000 users of a dating app for HIV-positive singles - openly available online to hackers in MongoDB databases.
Building a database security strategy is the first step for a company in ensuring security has been addressed inside out says Alan Hartwell.
App vulnerabilities need to be thought about holistically, so the network and database in which they reside also need to be considered says Josh Shaul.