Pages

Remote Work Might Be Causing Increased Database Leaks With Over 300,000 Reported in 2021

The shift to working remotely has been quite popular for employees because of the fact that this is the sort of thing that could potentially end up allowing them to enjoy a much better balance between their work lives and home lives. However, an unexpected consequence of this trend is that many workers are keeping sensitive data on systems that have not been secured with enterprise grade technology, and this is resulting in numerous database leaks.

A team at Group IB recently unveiled 308,000 separate databases that were compromised and subsequently exposed in 2021. Around 37.5% of these databases used a management system known as Redis, which suggest that it might have an exceptionally high number of vulnerabilities with all things having been considered and taken into account. In spite of the fact that this is the case, other database management systems like MongoDB and Elastic saw relatively high shares of the total leaks as well, with 30.9% and 29.3% respectively.

With all of that having been said and now out of the way, it is important to note that MySQL had one of the lowest rates of leaks, comprising only 2.3% of the total leaks that were detected in this report. The amount of time that database owners took to take care of this exposed database and secure it once again was startlingly high at the start of 2021, with most owners spending up to 170 days trying to come up with a solution and implement it.

While this timeline was reduced to around 112 days by the third quarter of 2021, but 2022 saw this timeline rapidly increase to 170 yet again. This might make it increasingly difficult for companies to make customers willing to share their data. Most customers have become more amenable to data sharing, but seeing how many databases were exposed as well as the lengthy time period required to secure the data might give them pause. After all, customers have only just started to change their tune about data sharing, and events like this will throw a wrench into the works.
Read next: Alarming Numbers of Malware Are Being Detected With The Growing Cyber Threats In Various Software

No comments: