ZDNet

Some Elasticsearch security features are now free for everyone

Elastic NV, the company behind the Elasticsearch document-oriented database and search engine technology, announced yesterday plans to make access to some its product's top security features free to ...
TheServerSide

Detect attacker intent with Elasticsearch security plugins

The Elasticsearch ecosystem has evolved into one of the primary open source tools that developers use to bring search into different kinds of applications. Begun as a simple recipe organizer, the ...
Bleeping Computer

File Inclusion Bug in Kibana Console for Elasticsearch Gets Exploit Code

Exploit code has been published for a local file inclusion (LFI) type of vulnerability affecting the Console plugin in Kibana data visualization tool for Elasticsearch; an attacker could use this to ...
PC World

After MongoDB, ransomware groups hit exposed Elasticsearch clusters

After deleting data from thousands of publicly accessible MongoDB databases, ransomware groups have started doing the same with Elasticsearch clusters that are accessible from the internet and are not ...