Serious MongoDB Flaw CVE-2025-14847 Under Exploitation
MongoDB disclosed the vulnerability (CVE-2025-14847) on Dec. 19 and a few days later, a public exploit for it appeared online.
All topics
General
41 Posts
Broad Exploit Activity Targets React2Shell Flaw
The vulnerability was disclosed publicly on Dec. 3 and researchers and threat intelligence teams immediately began seeing opportunistic and targeted exploitation attempts.
Rich Mogull on the Cloudflare Outage, Resilience, and Single Points of Failure
Dennis is joined by Rich Mogull, chief analyst at the Cloud Security Alliance, cloud security trainer, and all around good guy to talk about the Cloudflare outage, why the internet is now just six companies, and what, if anything, organizations can do to improve their resilience in the current environment.
Google Wants to Snuff Out ‘Lighthouse’ Phishing Kit
Google is taking legal action "designed to dismantle the core infrastructure" of the Lighthouse phishing-as-a-service operation.
Google Chrome to Enable HTTPS Default Browsing
In October 2026, Google will change the default settings in Chrome to include its existing “Always Use Secure Connections” feature.
Data Connects Scanning Surges for Cisco, Fortinet, PAN Devices
Researchers say that all three campaigns are being driven at least in part by one threat actor.