Traces of hacking have been detected in the infrastructure of the MongoDB company, which develops the document-oriented DBMS of the same name and the cloud service MongoDB Atlas. Judging by the notification sent to the company's customers, the attackers were able to gain access to some corporate systems, which, among other things, contained information about customer accounts and user contact information. At the current stage of the investigation, no evidence has been identified indicating that the attackers gained access to data stored by users in the MongoDB Atlas cloud service.
The malicious activity was detected on the evening of December 13, after which unauthorized access was stopped and the process of analyzing the incident began. It is not known how long the attackers had access to the infrastructure. It is also not mentioned how much the attack affected systems related to the development of the MongoDB DBMS. It is possible that the data obtained during the attack could be used for phishing and targeted attacks using social engineering methods. Users of MongoDB cloud services are recommended to enable two-factor authentication.
It is noted that the failure that occurred a few hours ago, due to which users of the Atlas cloud storage and technical support portal could not connect, is not related to the incident under investigation.
Source: opennet.ru
