Raychat

In January 2021 the Iranian messaging platform Raychat experienced a massive security incident due to a misconfigured MongoDB database. The breach exposed nearly one million records containing sensitive user information. Security researchers found that the database was accessible without authentication and was subsequently targeted by a Meow bot attack which deleted data after it had been potentially harvested by malicious actors. The leaked files included personal details and encrypted credentials.