The exposed server was found on a Bahrain IP address instead of a US IP, which is quite unusual. Another unusual aspect is that such a crucial database was left online without password protection or other authentication procedure for three weeks.
Read full article on HackRead