A high-severity vulnerability in MongoDB Server that allows unauthenticated remote attackers to siphon sensitive data from database memory. Dubbed “MongoBleed”…
LangChain core vulnerability allows prompt injection and data exposure Pierluigi Paganini December 27, 2025 A critical flaw in LangChain Core…
A hacker using the alias “Lovely” has leaked what they claim is the personal data of over 2.3 million Wired.com…
Trust Wallet users suffered devastating losses exceeding $7 million after cybercriminals compromised the Chrome browser extension version 2.68.0, released on…
Imagine a new kind of geopolitical battlefield that isn’t composed of tanks and soldiers but of lines of code and…
A proof-of-concept (PoC) exploit dubbed “mongobleed” for CVE-2025-14847, a critical unauthenticated memory leak vulnerability in MongoDB’s zlib decompression handling. Dubbed…
OpenAI is reportedly mulling a new form of ads on ChatGPT called “sponsored content,” which could influence your buying decisions….
In 2026, we won’t see terrorism incidents similar to 9/11, when hijacked airplanes struck the World Trade Center, or the…
NPM package with 56,000 downloads compromises WhatsApp accounts Pierluigi Paganini December 27, 2025 An NPM package with over 56,000 downloads…
Dec 27, 2025Ravie LakshmananDatabase Security / Vulnerability A high-severity security flaw has been disclosed in MongoDB that could allow unauthenticated…
Multiple critical vulnerabilities in TeamViewer DEX Client’s Content Distribution Service (NomadBranch.exe), formerly part of 1E Client. Affecting Windows versions before…
An information disclosure vulnerability in M-Files Server enables authenticated attackers to capture and reuse session tokens from active users. Potentially…