Most recent articles by:
Deep Shah
Deep is the Co-founder at Codezeros Technology. His strong business acumen and industry knowledge in the Blockchain industry make him one of the strongest pillars at Codezeros. He comes with a rich technological and business understanding to lead. His deep understanding of Blockchain technology integration is a key component of our success at Codezeros. He also contributes to the overall vision of the company's growth and development.
News
CVE-2025-14847 ‘MongoBleed’ exposes 87,000 MongoDB Worldwide
CVE-2025-14847 (nicknamed MongoBleed) lets unauthenticated attackers leak memory from MongoDB servers.More than 87,000 potentially vulnerable instances were identified worldwide, many with default zlib compression...
News
MongoDB Zlib Flaw CVE-2025-14847 Exposes Heap Memory Urgent!
A high-severity flaw, CVE-2025-14847 (CVSS 8.7), can let unauthenticated clients read uninitialized heap memory.The problem stems from mismatched length fields in zlib-compressed protocol headers.Many...
News
Trust Wallet Chrome Extension Breach Drains $7M; Update Now!
Trust Wallet Chrome extension version 2.68 contained malicious code that led to roughly $7 million in stolen crypto.The extension’s developer urged users to update...
News
LangChain ‘LangGrinch’ Flaw Lets Attackers Steal Secrets Now
LangChain Core contains a critical serialization injection flaw (CVE-2025-68664, CVSS 9.3) that can expose secrets and enable prompt injection.The bug stems from improper escaping...
News
LastPass vaults cracked; $35M stolen, Russians implicated…
Encrypted vault backups taken in the 2022 breach of LastPass were cracked using weak master passwords, leading to wallet drains as recently as late...
News
CISA Adds Digiever DS-2105 Pro Flaw to KEV Amid Attacks Now!
CISA has added a vulnerability affecting Digiever DS-2105 Pro NVRs to its KEV alert and Known Exploited Vulnerabilities (KEV) catalog.The flaw, CVE-2023-52163 (CVSS 8.8),...
News
Fortinet warns CVE-2020-12812 2FA bypass via case glitch now
Fortinet reported renewed abuse of CVE-2020-12812 allowing SSL VPN users to bypass two-factor authentication under specific configurations.The bypass stems from a case-sensitivity mismatch between...
News
Notarized MacSync stealer evades Gatekeeper via a signed app
MacSync has a new variant delivered inside a code-signed, notarized Swift app in a DMG file hosted on zkcallnet/download.The installer bypassed macOS protections by...
