“Thousands of Elasticsearch Servers Hijacked to Host PoS Malware”

Analysis conducted by Kromtech Security Center has revealed that 15,000 Elasticsearch servers are insecure with 4,000 of those servers hosting point-of-sale (POS) malware strains by the names of Alina and JackPos. These servers are insecure as they lack authentication, allowing hackers to perform a number of malicious activities such as stealing and ruining data. This article further discusses the insecurity of Elasticsearch servers along with POS malware strains Alina and JackPoS. 

Threatpost reports “Thousands of Elasticsearch Servers Hijacked to Host PoS Malware”