This week’s cybersecurity recap highlights key attacks, zero-days, and patches to keep you informed and secure.
A threat actor is targeting exposed MongoDB instances in automated data extortion attacks demanding low ransoms from owners ...
Two vulnerabilities in n8n’s sandbox mechanism could be exploited for remote code execution (RCE) on the host system.
Sandbox escape vulnerability in vm2, used by nearly 900 NPM packages, allows attackers to bypass security protections and ...
A critical vm2 Node.js vulnerability (CVE-2026-22709, CVSS 9.8) allows sandbox escape via Promise handler bypass.
MongoBleed (CVE-2025-14847) leaks sensitive data via uninitialized heap memory exploitation Roughly 87,000 exposed MongoDB instances vulnerable; most located in U.S., China, and Germany Patch released ...
Update 12/26/25: Article updated to correct that the flaw has not been officially classified as an RCE. MongoDB has warned IT admins to immediately patch a high-severity memory-read vulnerability that ...
MongoDB (MDB) could be a solid addition to your portfolio given a notable revision in the company's earnings estimates. While the stock has been gaining lately, the trend might continue since its ...
The modern Run prompt looks like more of a launcher in the latest preview builds of Windows 11. The modern Run prompt looks like more of a launcher in the latest preview builds of Windows 11. is a ...
Thirty years ago today, Netscape Communications and Sun Microsystems issued a joint press release announcing JavaScript, an object scripting language designed for creating interactive web applications ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results