MongoDB itself claims that its systems have been breached by hackers. They walked away with limited information about customers. The data of these customers is protected, it said.

Hackers have infiltrated MongoDB’s network. The NoSQL specialist found this out last weekend. The cyberattack affected company systems and was believed to have been ongoing for some time. This allowed hackers to steal data. According to MongoDB itself, criminals have stolen metadata and contact information from customers.

Beware of phishing

The hack is particularly annoying because it provides attackers with additional fodder for targeted phishing campaigns. MongoDB warns about this. With information about customers, criminals can make their fraudulent emails much more realistic. The company also recommends enabling MFA (which is always a good idea) and changing passwords regularly (which is generally an outdated practice that can negatively impact security).

MongoDB says no customer data was exposed to the hackers. The data in MongoDB Atlas was spared from the hack. It’s unclear how the hackers got in and how long they spent snooping around MongoDB.