On October 5th, a member of Hacken security team has been browsing through Shodan looking for exposed Elasticsearch instances which recently could become targets in another spread of ransomware campaigns.

https://blog.hacken.io/fitmetrix-exposed-millions-of-customers-records-in-a-passwordless-database