Catalin Cimpanu reports:
The criminal gang behind the Gootkit malware has made the same mistake that thousands of legitimate companies have made before them in the past years — they left MongoDB databases connected to the internet without a password.
The leak allowed security researcher Bob Diachenko to download all group’s data and gain an insight into their operations.
Diachenko shared some of this data exclusively with ZDNet, and this article is a result of weeks of looking into samples of data the Gootkit gang gathered from infected hosts.
Read more on ZDNet.