Elasticsearch started life as a document database sitting atop the Lucene text search engine library. It was soon joined by related applications, and the preferred acronym for the Elasticsearch ...

The internet-facing instances are currently being accessed by attackers who remove the vulnerable databases and leave a ransom note instead.

A campaign targeting poorly secured Elasticsearch databases has deleted their contents and dropped ransom notes on 450 instances, demanding a payment of $620 to give them back their indexes ...

A publicly accessible Elasticsearch database discovered on March 27 exposed various types of personally identifiable information (PII) and medical info of more than 100,000 individuals.

“ Elasticsearch is being used as a vector database, for hybrid search, and as a powerful engine for retrieval augmented generation (RAG), and LangChain is the de facto orchestration library for ...

After news broke that an Elasticsearch server belonging to several online casinos was left without a password, independent security researcher Bob Diachenko discovered another unprotected ...

More recently he found a Vietnamese outsourcing company had left an Elasticsearch server open with exposed personal information on about 6,000 people in its database of freelancers, as well as ...