Security Boulevard

Threat Actors Exploiting Critical ‘MongoBleed’ MongoDB Flaw

A high-severity flaw in MongoDB instances could allow unauthenticated remote bad actors to leak sensitive data from MongoDB servers. Dubbed "MongoBleed," the security flaw is being exploited in the ...
ZDNet

Remote exploit released for brand-new Safari for Windows

Security researcher Thor Larholm has found what might be the first remote code execution vulnerability in Apple's shiny new Safari for Windows. Larholm (left) has released an advisory with ...
Bleeping Computer

Zerodium triples WordPress remote code execution exploit payout

Zerodium has announced today an increased interest in exploits for the WordPress content management system that achieve remote code execution. The exploit acquisition platform is now enticing exploit ...
Polygon

Dark Souls PvP servers taken offline to fix dangerous exploit

FromSoftware and Bandai Namco are temporarily closing down player-versus-player multiplayer access to the Dark Souls games on Windows PC after a dangerous remote code execution (RCE) exploit became ...
Gizmodo

Users Exploit a Twitter Remote Work Bot to Claim Responsibility for the Challenger Shuttle Disaster

Using an exploit in the AI language model, users have used a Twitter AI to post ASCII art and make ‘credible threats’ against the president. Reading time 3 minutes Have you ever wanted to gaslight an ...
ZDNet

Windows SMB2 exploit now public; Expect in-the-wild attacks soon

Fully functional exploit code for the (still unpatched) Windows SMB v2 vulnerability has been released to the public domain via the freely available Metasploit point-and-click attack tool, raising the ...
Ars Technica

New exploit leaves most Macs vulnerable to permanent backdooring

Macs older than a year are vulnerable to exploits that remotely overwrite the firmware that boots up the machine, a feat that allows attackers to control vulnerable devices from the very first ...