Category: Bleeping Computer

Exploited MongoBleed flaw leaks MongoDB secrets, 87K servers exposed
29
Dec
2025

Exploited MongoBleed flaw leaks MongoDB secrets, 87K servers exposed

A severe vulnerability affecting multiple MongoDB versions, dubbed MongoBleed (CVE-2025-14847), is being actively exploited in the wild, with over 80,000…

Share: X : Exploited MongoBleed flaw leaks MongoDB secrets, 87K servers exposedFacebook : Exploited MongoBleed flaw leaks MongoDB secrets, 87K servers exposedLinkedin : Exploited MongoBleed flaw leaks MongoDB secrets, 87K servers exposedReddit : Exploited MongoBleed flaw leaks MongoDB secrets, 87K servers exposedTelegram : Exploited MongoBleed flaw leaks MongoDB secrets, 87K servers exposedWhatsApp : Exploited MongoBleed flaw leaks MongoDB secrets, 87K servers exposedEmail : Exploited MongoBleed flaw leaks MongoDB secrets, 87K servers exposed
Hand sifting through leaked data
28
Dec
2025

Hacker claims to leak WIRED database with 2.3 million records

A hacker claims to have breached Condé Nast and leaked an alleged WIRED database containing more than 2.3 million subscriber…

Share: X : Hacker claims to leak WIRED database with 2.3 million recordsFacebook : Hacker claims to leak WIRED database with 2.3 million recordsLinkedin : Hacker claims to leak WIRED database with 2.3 million recordsReddit : Hacker claims to leak WIRED database with 2.3 million recordsTelegram : Hacker claims to leak WIRED database with 2.3 million recordsWhatsApp : Hacker claims to leak WIRED database with 2.3 million recordsEmail : Hacker claims to leak WIRED database with 2.3 million records
Rainbow Six Siege
28
Dec
2025

Massive Rainbow Six Siege breach gives players billions of credits

Ubisoft’s Rainbow Six Siege (R6) suffered a breach that allowed hackers to abuse internal systems to ban and unban players,…

Share: X : Massive Rainbow Six Siege breach gives players billions of creditsFacebook : Massive Rainbow Six Siege breach gives players billions of creditsLinkedin : Massive Rainbow Six Siege breach gives players billions of creditsReddit : Massive Rainbow Six Siege breach gives players billions of creditsTelegram : Massive Rainbow Six Siege breach gives players billions of creditsWhatsApp : Massive Rainbow Six Siege breach gives players billions of creditsEmail : Massive Rainbow Six Siege breach gives players billions of credits
GPT
27
Dec
2025

OpenAI’s ChatGPT ads will allegedly prioritize sponsored content in answers

OpenAI is reportedly mulling a new form of ads on ChatGPT called “sponsored content,” which could influence your buying decisions….

Share: X : OpenAI’s ChatGPT ads will allegedly prioritize sponsored content in answersFacebook : OpenAI’s ChatGPT ads will allegedly prioritize sponsored content in answersLinkedin : OpenAI’s ChatGPT ads will allegedly prioritize sponsored content in answersReddit : OpenAI’s ChatGPT ads will allegedly prioritize sponsored content in answersTelegram : OpenAI’s ChatGPT ads will allegedly prioritize sponsored content in answersWhatsApp : OpenAI’s ChatGPT ads will allegedly prioritize sponsored content in answersEmail : OpenAI’s ChatGPT ads will allegedly prioritize sponsored content in answers
Fake GrubHub emails promise tenfold return on sent cryptocurrency
26
Dec
2025

Fake GrubHub emails promise tenfold return on sent cryptocurrency

Grubhub users received fraudulent messages, apparently from a company email address, promising a tenfold bitcoin payout in return for a…

Share: X : Fake GrubHub emails promise tenfold return on sent cryptocurrencyFacebook : Fake GrubHub emails promise tenfold return on sent cryptocurrencyLinkedin : Fake GrubHub emails promise tenfold return on sent cryptocurrencyReddit : Fake GrubHub emails promise tenfold return on sent cryptocurrencyTelegram : Fake GrubHub emails promise tenfold return on sent cryptocurrencyWhatsApp : Fake GrubHub emails promise tenfold return on sent cryptocurrencyEmail : Fake GrubHub emails promise tenfold return on sent cryptocurrency
MongoDB
26
Dec
2025

MongoDB warns admins to patch severe vulnerability immediately

Update 12/26/25: Article updated to correct that the flaw has not been officially classified as an RCE. MongoDB has warned…

Share: X : MongoDB warns admins to patch severe vulnerability immediatelyFacebook : MongoDB warns admins to patch severe vulnerability immediatelyLinkedin : MongoDB warns admins to patch severe vulnerability immediatelyReddit : MongoDB warns admins to patch severe vulnerability immediatelyTelegram : MongoDB warns admins to patch severe vulnerability immediatelyWhatsApp : MongoDB warns admins to patch severe vulnerability immediatelyEmail : MongoDB warns admins to patch severe vulnerability immediately
hacker
26
Dec
2025

Trust Wallet confirms extension hack led to $7 million crypto theft

Trust Wallet confirmed that a compromised Chrome extension update released on December 24 led to $7 million in stolen cryptocurrency…

Share: X : Trust Wallet confirms extension hack led to $7 million crypto theftFacebook : Trust Wallet confirms extension hack led to $7 million crypto theftLinkedin : Trust Wallet confirms extension hack led to $7 million crypto theftReddit : Trust Wallet confirms extension hack led to $7 million crypto theftTelegram : Trust Wallet confirms extension hack led to $7 million crypto theftWhatsApp : Trust Wallet confirms extension hack led to $7 million crypto theftEmail : Trust Wallet confirms extension hack led to $7 million crypto theft
hacker
26
Dec
2025

Trust Wallet Chrome extension hack tied to millions in losses

Several users of the Trust Wallet Chrome extension report having their cryptocurrency wallets drained after installing a compromised extension update…

Share: X : Trust Wallet Chrome extension hack tied to millions in lossesFacebook : Trust Wallet Chrome extension hack tied to millions in lossesLinkedin : Trust Wallet Chrome extension hack tied to millions in lossesReddit : Trust Wallet Chrome extension hack tied to millions in lossesTelegram : Trust Wallet Chrome extension hack tied to millions in lossesWhatsApp : Trust Wallet Chrome extension hack tied to millions in lossesEmail : Trust Wallet Chrome extension hack tied to millions in losses
GPT
26
Dec
2025

ChatGPT’s new formatting blocks make its UI look more like a task tool

OpenAI has quietly rolled out ‘formatting blocks,’ which tweak GPT’s layout to match the UI of the task it is…

Share: X : ChatGPT’s new formatting blocks make its UI look more like a task toolFacebook : ChatGPT’s new formatting blocks make its UI look more like a task toolLinkedin : ChatGPT’s new formatting blocks make its UI look more like a task toolReddit : ChatGPT’s new formatting blocks make its UI look more like a task toolTelegram : ChatGPT’s new formatting blocks make its UI look more like a task toolWhatsApp : ChatGPT’s new formatting blocks make its UI look more like a task toolEmail : ChatGPT’s new formatting blocks make its UI look more like a task tool
Gmail
25
Dec
2025

Google will finally allow you to change your @gmail.com address

Google will finally allow you to change your @gmail address or create a new alias, according to a new support…

Share: X : Google will finally allow you to change your @gmail.com addressFacebook : Google will finally allow you to change your @gmail.com addressLinkedin : Google will finally allow you to change your @gmail.com addressReddit : Google will finally allow you to change your @gmail.com addressTelegram : Google will finally allow you to change your @gmail.com addressWhatsApp : Google will finally allow you to change your @gmail.com addressEmail : Google will finally allow you to change your @gmail.com address
Microsoft Teams
25
Dec
2025

Microsoft Teams to let admins block external users via Defender portal

Microsoft announced that security administrators will soon be able to block external users from sending messages, calls, or meeting invitations…

Share: X : Microsoft Teams to let admins block external users via Defender portalFacebook : Microsoft Teams to let admins block external users via Defender portalLinkedin : Microsoft Teams to let admins block external users via Defender portalReddit : Microsoft Teams to let admins block external users via Defender portalTelegram : Microsoft Teams to let admins block external users via Defender portalWhatsApp : Microsoft Teams to let admins block external users via Defender portalEmail : Microsoft Teams to let admins block external users via Defender portal
Fake MAS Windows activation domain used to spread PowerShell malware
25
Dec
2025

Fake MAS Windows activation domain used to spread PowerShell malware

A typosquatted domain impersonating the Microsoft Activation Scripts (MAS) tool was used to distribute malicious PowerShell scripts that infect Windows systems…

Share: X : Fake MAS Windows activation domain used to spread PowerShell malwareFacebook : Fake MAS Windows activation domain used to spread PowerShell malwareLinkedin : Fake MAS Windows activation domain used to spread PowerShell malwareReddit : Fake MAS Windows activation domain used to spread PowerShell malwareTelegram : Fake MAS Windows activation domain used to spread PowerShell malwareWhatsApp : Fake MAS Windows activation domain used to spread PowerShell malwareEmail : Fake MAS Windows activation domain used to spread PowerShell malware