Exposed MongoDB instances still targeted in data extortion attacks

Published on February 1, 2026

A threat actor is targeting exposed MongoDB instances in automated data extortion attacks demanding low ransoms from owners to restore the data. [...]

Continue reading on website
Other news

New Apple privacy feature limits location tracking on iPhones, iPads

February 1, 2026
Apple is introducing a new privacy feature that lets users limit the precision of location data shared with cellular networks on some iPhone and iPad models. [...]

Open VSX Supply Chain Attack Used Compromised Dev Account to Spread GlassWorm

February 2, 2026
Cybersecurity researchers have disclosed details of a supply chain attack targeting the Open VSX Registry in which unidentified threat actors compromised a legitimate developer's resources to push malicious updates to downstream users."On January 30, 2026, four established Open VSX extensions published by the oorzc author had malicious versions published to Open VSX that embed the GlassWorm