LangChain core vulnerability allows prompt injection and data exposure
LangChain core vulnerability allows prompt injection and data exposure Pierluigi Paganini December 27, 2025 A critical flaw in LangChain Core could allow attackers to steal…
Latest Cybersecurity News — Page 695
View all →
Hacker Leaks 2.3M Wired.com Records, Claims 40M-User Condé Nast Breach – Hackread – Cybersecurity News, Data Breaches, AI, and More
A hacker using the alias “Lovely” has leaked what they claim is the personal data of over 2.3 million Wired.com users, a prominent American magazine…
Hackers Compromise Trust Wallet Chrome Extension, Users Claim Millions Stolen
Trust Wallet users suffered devastating losses exceeding $7 million after cybercriminals compromised the Chrome browser extension version 2.68.0, released on December 24, 2025. The breach,…
Navigating the New Cold War: Why Robotic Security is a Geopolitical Imperative
Imagine a new kind of geopolitical battlefield that isn’t composed of tanks and soldiers but of lines of code and the machines that execute them.…
Mongobleed PoC Exploit Tool Released for MongoDB Flaw that Exposes Sensitive Data
A proof-of-concept (PoC) exploit dubbed “mongobleed” for CVE-2025-14847, a critical unauthenticated memory leak vulnerability in MongoDB’s zlib decompression handling. Dubbed by its creator Joe Desimone…
OpenAI’s ChatGPT ads will allegedly prioritize sponsored content in answers
OpenAI is reportedly mulling a new form of ads on ChatGPT called “sponsored content,” which could influence your buying decisions. As we recently reported, the…
The US Must Stop Underestimating Drone Warfare
In 2026, we won’t see terrorism incidents similar to 9/11, when hijacked airplanes struck the World Trade Center, or the Oklahoma City bombing, when ammonium…
NPM package with 56,000 downloads compromises WhatsApp accounts
NPM package with 56,000 downloads compromises WhatsApp accounts Pierluigi Paganini December 27, 2025 An NPM package with over 56,000 downloads stole WhatsApp credentials, hid its…
New MongoDB Flaw Lets Unauthenticated Attackers Read Uninitialized Memory
Dec 27, 2025Ravie LakshmananDatabase Security / Vulnerability A high-severity security flaw has been disclosed in MongoDB that could allow unauthenticated users to read uninitialized heap…
TeamViewer DEX Vulnerabilities Let Attackers Trigger DoS Attack and Expose Sensitive Data
Multiple critical vulnerabilities in TeamViewer DEX Client’s Content Distribution Service (NomadBranch.exe), formerly part of 1E Client. Affecting Windows versions before 25.11 and select older branches,…
M-Files Vulnerability Let Attacker Capture Session Tokens of Other Active Users
An information disclosure vulnerability in M-Files Server enables authenticated attackers to capture and reuse session tokens from active users. Potentially gaining unauthorized access to sensitive…
New York to require social media platforms to display mental health warnings
Social media platforms with infinite scrolling, auto-play and algorithmic feeds will be required to display warning labels about their potential harm to young users’ mental…