Hacker News new | comments | ask | show | jobs | submit login

Any details on what exactly was the misconfiguration in mongo?

For one, it should never have a publicly accessible IP.

Mongo used to not support authentication, so it's probably an old version coupled with a public IP or elastic IP.

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | Legal | Apply to YC | Contact