SecurityWeek

Dozens of Major Data Breaches Linked to Single Threat Actor

A threat actor known as Zestix and Sentap has hacked dozens of global enterprises using credentials exfiltrated via ...
Cybernews

As MongoBleed exploitation escalates, 95% of systems remain unpatched

Hackers are actively exploiting the MongoBleed vulnerability to dump memory, while an estimated 95% of exposed MongoDB ...
Cybernews

Christmas gift: method to exploit MongoBleed vulnerability leaking MongoDB secrets showcased on web

Weirdly, a public exploit and technical details are available online, showing how attackers can trigger the vulnerability and remotely extract secrets, credentials, and other sensitive data.

Exploited MongoBleed flaw leaks MongoDB secrets, 87K servers exposed

A severe vulnerability affecting multiple MongoDB versions, dubbed MongoBleed (CVE-2025-14847), is being actively exploited ...
thedomains.com

Scammers exploit official Google domain to send phishing emails

Cybernews.com published an article about scammers actually using Google’s domain name Google.com to send phishing emails. This is kind of nuts. From the article: Scammers have found a way to send ...
PC World

Google issues urgent Chrome update to fix a mysterious 0-day exploit

Google released urgent Chrome updates (versions 143.0.7499.109/101) to fix three vulnerabilities, including one actively exploited 0-day exploit classified as high risk. PCWorld reports that users ...
Variety

Disney Accuses Google of Using AI to Engage in Copyright Infringement on ‘Massive Scale’

As Disney has gone into business with OpenAI, the Mouse House is accusing Google of copyright infringement on a “massive scale” using AI models and services to “commercially exploit and distribute” ...
Forbes

‘Zero‑Click Google Drive Wiper’ Exploit Mass‑Deletes Files

A polite email asking an AI browser to “organize your Drive” can silently wipe your files. No phishing link or suspicious attachment required. Just a friendly request that turns an automated assistant ...
PC Gamer

Google's toying with nonsense AI-made headlines on articles like ours in the Discover feed, so please don't blame me for clickbait like 'BG3 players exploit children'

AI Disney's embarrassing AI-generated Star Wars video of scrambled-up animals was the opening salvo in a year full of AI humiliation AI Microsoft CEO Satya Nadella says it's time to stop talking about ...
Lifehacker

Google's December Security Update Fixes Two Zero-Day Exploits (and 105 Others)

In its Android Security Bulletin for December, Google is pushing an especially large number of updates to address vulnerabilities across different components—and two of the flaws may have been ...
winbuzzer.com

Google Issues Emergency Chrome Update to Patch Active Zero-Day Exploit

With active attacks already underway, Google has issued an emergency security update for Chrome to patch a critical zero-day vulnerability in its V8 JavaScript engine. The high-severity flaw, tracked ...
Hosted on MSN

Scammers exploit Google to send fake official emails

A phishing campaign abused Google’s own notification system, making scam emails appear to come directly from [email protected]. The messages mimicked legal notices and tricked users into ...