SecurityWeek

Fresh MongoDB Vulnerability Exploited in Attacks

Hackers are exploiting CVE-2025-14847, aka MongoBleed, a MongoDB vulnerability, to leak sensitive information from server ...

CISA orders feds to patch MongoBleed flaw exploited in attacks

CISA ordered U.S. federal agencies to patch an actively exploited MongoDB vulnerability (MongoBleed) that can be exploited to ...
CoinDesk

Unleash Protocol hit by $3.9 million exploit with funds routed through Tornado Cash

An attacker seized control of Unleash Protocol’s multisig governance to upgrade contracts and siphon funds, which were later ...

WebRAT malware spread via fake vulnerability exploits on GitHub

The WebRAT malware is now being distributed through GitHub repositories that claim to host proof-of-concept exploits for ...

Hackers Unredact Epstein Files — What You Need To Know

Hackers have exposed heavily redacted information from the latest 11,034 documents in the Epstein files, released on Monday.

Meet the team that investigates when journalists and activists get hacked with government spyware

For years, Access Now’s Digital Security Helpline has been aiding journalists and dissidents who have been targeted with ...

Thousands of servers exposed as MongoBleed vulnerability exploited

In its writeup, BleepingComputer confirms that there are roughly 87,000 potentially vulnerable instances exposed on the ...
The Hacker News

China-Linked Evasive Panda Ran DNS Poisoning Campaign to Deliver MgBot Malware

China-linked Evasive Panda used DNS poisoning to deliver the MgBot backdoor in targeted espionage attacks from 2022 to 2024.
Techlicious

OpenAI Confirms AI-Powered Browsers Leave You Vulnerable to Hackers

So-called prompt injections can trick chatbots into actions like sending emails or making purchases on your behalf. OpenAI ...