Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » About 40,000 MongoDB databases found open online

About 40,000 MongoDB databases found open online


Softpedia - (International) Three Saarland University cyber-security students reported security vulnerabilities in MongoDB's database configuration, including servers with no access control mechanisms that could potentially allow access outside the backend and expose the information of millions of customer to unauthorized parties. An initial scan found nearly 40,000 databases that were open, prompting the researchers to submit their findings to MongoDB maintainers for integration into revised security instructions for users.


Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at:

Last Updated: 27 May 2016 10:23:25