I added my own #MongoDB stack to #OpenCanary in 41 minutes!!

It seems attackers care less about #MongoBleed and more about deployments facing the Internet and having no authentication.... 🤷‍♂️

https://toce.ch/opencanary-mongodb-honeypot/

#AllUIRDataRBelongUs

🔥 Latest issue of my curated #cybersecurity and #infosec list of resources for week #03/2026 is out!

→ It includes the following and much more:

🔓️ #BreachForums had its user database leaked;

❌ #RedVDS Infrastructure seized by #Microsoft and Law Enforcement;

🇪🇸 🇪🇺 #Europol and Spanish police arrested 34 people linked to the Black Axe;

🇮🇷 🔌 #Iran has cut off internet and phone access nationwide for more than a week

🐧 New modular #Linux malware framework called #VoidLink;

🩸 #MongoBleed, a critical, unauthenticated #MongoDB memory-leak vulnerability;

📆 🩹 Microsoft #PatchTuesday addresses 112 defects, including one actively exploited zero-day;

--

👉 NEVER MISS my curations and updates on information security and cybersecurity news and challenges 📨 Subscribe to the #infosecMASHUP newsletter to have it piping hot in your inbox every week-end ⬇️

https://infosec-mashup.santolaria.net/p/infosec-mashup-03-2026

One more side project?  
🥭 🩸 🍯

#mongobleed #CVE-2025-14847

Mongobleed (CVE-2025-14847): Lỗ hổng lộ lọt bộ nhớ thời gian chạy trong MongoDB có thể làm lộ dữ liệu nhạy cảm mà không kích hoạt cảnh báo. Làm thế nào để phát hiện rò rỉ bộ nhớ thời gian chạy trong khi vẫn giữ tiếng ồn ở mức tối thiểu? Xem bài viết trên blog của Armosec.io. #cybersecurity #vulnerability #MongoDB #Mongobleed #CVE202514847 #bảo_mật #lỗ_hổng #phát_hiện_rò_rỉ_bộ_nhớ

https://www.reddit.com/r/SaaS/comments/1q1y7w5/runtime_memory_vulnerabilities_in_mongodb/

Hunting MongoBleed (CVE-2025-14847): https://blog.ecapuano.com/p/hunting-mongobleed-cve-2025-14847

#mongobleed #threathunting #detectionengineering