MongoDB on Saturday disclosed it can be actively investigating a security incident that has led to unauthorized access to “specific” company units, ensuing in the publicity of shopper account metadata and get in touch with information.
The American databases software enterprise explained it initial detected anomalous activity on December 13, 2023, and that it promptly activated its incident reaction attempts.
It more mentioned that “this unauthorized obtain has been heading on for some period of time just before discovery,” but emphasised it can be not “aware of any publicity to the facts that prospects retailer in MongoDB Atlas.”. It did not disclose the specific time period of the compromise.
In gentle of the breach, MongoDB endorses that all consumers be on the lookout for social engineering and phishing attacks, implement phishing-resistant multi-factor authentication (MFA), as very well as rotate their MongoDB Atlas passwords.
That is not all. The business reported it really is also experiencing elevated login attempts that are causing issues for consumers making an attempt to log in to Atlas and our Assist Portal. It, even so, claimed the trouble is unrelated to the security event.
The Hacker News has arrived at out to MongoDB for extra comments, and we will update the story if we listen to back again.
(This is a creating story. Be sure to verify back for a lot more updates.)
Found this report exciting? Adhere to us on Twitter and LinkedIn to examine additional distinctive material we post.
Some sections of this write-up are sourced from: