Serious MongoDB Flaw CVE-2025-14847 Under Exploitation
MongoDB disclosed the vulnerability (CVE-2025-14847) on Dec. 19 and a few days later, a public exploit for it appeared online.
Archives for December 2025
All topics
Articles
15 Posts
Is Kevin McCallister the Greatest Hacker in Movie History?
There may not be any computers in Home Alone, but few movie characters embody the old-school hacker ethos like Kevin McCallister does.
Russian Targeting of Edge Devices. Cisco AsyncOS Zero Day, and React2Shell Won’t Go Away
As we ease into the holidays, the security news doesn’t stop coming. This week we discuss the research from AWS threat intelligence on Russian adversaries targeting a variety of network edge devices for opportunistic exploitation, then we break down attacks by a Chinese threat actor that target a new zero day in Cisco’s AsyncOS, and finally we discuss the […]
Threat Actors Target Unpatched Cisco AsyncOS Zero-Day
Threat actors are exploiting an unpatched zero-day vulnerability in Cisco AsyncOS software.
The Hacker Movie Canon: Die Hard
Pete Baker and Zoe Lindsey join Dennis Fisher on the roof of Nakatomi Plaza to discuss one of the great action classics* and a beloved movie in the hacker community: Die Hard. Yippee ki-yay! *Not a Christmas movie
Russian Hackers Target Misconfigured Edge Devices in ‘Concerning Evolution’ For Critical Infrastructure Attacks
Amazon researchers highlighted a "tactical pivot" by Russian GRU hackers who have been moving away from zero-day and N-day exploitation.