Microsoft pushes DocumentDB database as sub for ransomware target MongoDB

mongo_microsoft

Microsoft Corp. is hoping to capitalize on the recent spate of ransomware attacks on MongoDB database installations by pitching its alternative DocumentDB solution to developers.

In a blog post titled: “Dear #MongoDB users, we welcome you in #Azure #DocumentDB,” the company reaches out to MongoDB developers who might have been hurt or just worried by the January attacks on unsecured MongoDB databases. Last month, SiliconANGLE reported that some 27,000 badly configured MongoDB installations were hit by ransomware, which is malware that encrypts data and demands a payment for its return.

Microsoft offers a long list of ways in which it secures its Azure DocumentDB databases, pitching features such as access control and authentication being enabled by default, the ability to configure role-based access control, encrypted communications and IP filtering. Also, Microsoft points out how DocumentDB supports the MongoDB protocol, which means apps written for MongoDB do not need to be rewritten to switch to its solution.

The company also offers a raft of tutorials and code samples to help developers assess whether DocumentDB is a viable option. Microsoft neglects to point out that although DocumentDB’s protocol support should make migrating between the two databases an easier task, its lack of support for partial updates and aggregation functions has led to some grumbling over on the Azure feedback page.

Azure DocumentDB, which is Microsoft’s direct rival to a huge number of NoSQL databases used by enterprises, was launched in 2014, designed entirely for consumption as a service in the Azure cloud.

Image courtesy of Microsoft