These countries have the most exposed databases online

Unsecured databases continue to be a problem for businesses and consumers worldwide

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

Leaving a database exposed online without a password can be extremely damaging for both businesses and their customers. Despite this risk, anew reportfromNordPasshas identified a total of 9,517 unsecured databases containing more than 10bn entries filled with data such as emails, passwords and phone numbers.

To conduct its research, the company behind the newpassword managerpartnered with a white hat hacker who scanned Elasticsearch and MongoDB libraries between June of last year and this year looking for exposed, unprotected databases.

The exposed databases were found across 20 different countries with China, the US and India at the top of the list. China had nearly 4,000 exposed databases with 2.6bn entries, the US had 2,703 with 2.4bn entries and India had just 520 with 4.8m entries.

While some of this data may be useless and only used for internal testing by companies, much of it could be quite damaging if exposed. Also cybercriminals have launched a new series of so calledmeow attacksthat wipe the data stored on unsecured databases completely without any explanation or even a ransom note.

Finding exposed databases online

Although it may sound complicated at first, finding exposed databases online is actually quite easy by using search engines like Censys or Shodan. With them, anyone can scan the web and view open databases in just a few clicks.

Security expert at NordPass, Chad Hammond explained in a press release how businesses can better secure their customer data online, saying:

“Every company, entity, or developer should make sure they never leave any database exposed, as this is obviously a huge threat to user data. Proper protection should include data encryption at rest, wire (in motion) data encryption, identity management, and vulnerability management. Data can be exposed to risks both in transit and at rest and therefore requires protection in both states.”

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

Exposed databaseshave led to customer data ending up online in the past but the recent wave of meow attacks may end up being the wake up call businesses who that have yet to secure their databases need.

After working with the TechRadar Pro team for the last several years, Anthony is now the security and networking editor at Tom’s Guide where he covers everything from data breaches and ransomware gangs to the best way to cover your whole home or business with Wi-Fi. When not writing, you can find him tinkering with PCs and game consoles, managing cables and upgrading his smart home.

New fanless cooling technology enhances energy efficiency for AI workloads by achieving a 90% reduction in cooling power consumption

Samsung plans record-breaking 400-layer NAND chip that could be key to breaking 200TB barrier for ultra large capacity AI hyperscaler SSDs

NYT Strands today — hints, answers and spangram for Sunday, November 10 (game #252)