An gano bayanan MongoDB wanda baya buƙatar tabbatarwa a cikin jama'a, wanda ke ƙunshe da bayanai daga tashoshin kiwon lafiya na gaggawa na Moscow (EMS).
Abin baƙin ciki, ba wannan ba ita ce kawai matsalar ba: na farko, wannan lokacin da gaske bayanan sun yoyo, na biyu kuma, an adana duk mahimman bayanai a kan uwar garken da ke Jamus (Ina so in tambaya ko wannan ya saba wa wata doka ko umarnin sashe?).
Дисклеймер: вся информация ниже публикуется исключительно в образовательных целях. Автор не получал доступа к персональным данным третьих лиц и компаний. Информация взята либо из открытых источников, либо была предоставлена автору анонимными доброжелателями.
Sabar da ke da rumbun adana bayanai mai suna "ssmp", yana kan shafin shahararren mai ba da sabis na Hetzner a Jamus.
Bisa ga shaidar kai tsaye, yana yiwuwa a gano wanda ake zargi da uwar garke da kuma bayanan bayanai - kamfanin Rasha LLC "Computer Intelligent Systems".
A kan shafin ci-systems.com/solutions/programs-smp/, kamfanin ya gaya mana:
EMS CIS samfuri ne na software wanda aka tsara don sarrafa ayyukan gaggawa (na musamman) tashoshi na kula da lafiya (EMS) a cikin iyakoki na ƙungiyar Tarayyar Rasha kuma yana ba da:
- karbar kira;
- kira rajista da sakewa;
- samuwar, saka idanu da sarrafa ƙungiyoyin hannu na tashoshin EMS;
- yawan sake fasalin ƙungiyoyin sabis na kiwon lafiya na gaggawa a lokacin gaggawa;
- aiki na cibiyar sarrafa kira ta EMS guda ɗaya;
- musayar bayanai tare da tsarin bayanan waje.
Ma'aunin bayanai ya kasance girman 17.3 GB kuma ya ƙunshi:
- kwanan wata/lokacin kiran gaggawa
- Cikakken sunan ma'aikatan motar asibiti (ciki har da direba)
- lambar farantin motar motar asibiti
- Matsayin motar motar asibiti (misali, "shigo a kira")
- adireshin kira
- Cikakken suna, ranar haihuwa, jinsi na majiyyaci
- bayanin yanayin majiyyaci (misali, “zazzabi>39, raguwar rashin ƙarfi, babba”)
- Cikakken sunan wanda ya kira motar asibiti
- lambar sadarwa
- da ƙari…
Bayanan da ke cikin ma'ajin bayanai sun yi kama da ginshiƙi na wani nau'in tsarin sa ido/bibi don aiwatar da aikin. Abin sha'awa shine filin"data"a cikin tebur"sanya tarihin_bayanai".
(Hakika, a cikin hoton da ke sama na yi ƙoƙarin ɓoye duk bayanan sirri.)
Kamar yadda aka rubuta a farkon farkon, rashin tantancewa ba shine kawai matsalar wannan lokacin ba.
Abu mafi mahimmanci shi ne cewa an fara gano wannan ma'auni ta hanyar hackers na Ukraine daga kungiyar THack3forU, wanda ke barin saƙonni daban-daban a cikin MongoDB da aka samo kuma yana lalata bayanai. A wannan karon yaran sun bambanta kansu da wannan:
"THack3forU ne ya sace shi! Chanel.nPutin dick ne, n Meddvédeva schmuck ne, nStrelkov ɗan iska ne, Rasha ita ce KASA!
kuma ba shakka gaskiyar cewa, sun zazzage duk 17 GB, sun buga su a cikin tsarin CSV akan tallan fayil. mega.nz. Game da yadda ake gano bayanan bayanan MongoDB - .
Da zaran an gano wanda ya mallaki ma’ajiyar bayanai, sai na aika masa da sanarwa tare da ba da shawara don har yanzu rufe damar shiga rumbun adana bayanan, ko da yake ya riga ya yi latti – bayanan sun “bace”.
Injin bincike na farko Shodan an rubuta wannan bayanan a ranar 28.06.2018/08.04.2019/17, kuma a ƙarshe an rufe samun damar zuwa 20/18/05, wani wuri tsakanin 6:XNUMX da XNUMX:XNUMX (lokacin Moscow). Kasa da awanni XNUMX sun shude tun sanarwar.
Ana iya samun labarai game da leken asirin bayanai da masu ciki koyaushe a tashar Telegram ta "".
source: www.habr.com