Cybersecurity Headlines MongoDB records exposed, Apple WebKit patches, Coupang culprit identified
18 snips
Dec 15, 2025 A massive 16TB MongoDB leak exposes nearly 4.3 billion professional records, raising serious privacy concerns. Apple has issued crucial updates after discovering flaws in WebKit that could be exploited by mercenary spyware. In a concerning breach, an ex-employee of Coupang retains access, compromising the data of 33.7 million customers. MITRE highlights top software vulnerabilities, while Germany raises alarms over cyberattacks linked to Russia. Lastly, Canada investigates AI billboards that scan people's age and gender.
AI Snips
Chapters
Transcript
Episode notes
Massive Professional Data Exposure
- A 16TB MongoDB dataset held nearly 4.3 billion professional records resembling LinkedIn profiles and was exposed briefly in late November 2025.
- Nexus.ai warns this dataset could enable large-scale AI-driven social engineering attacks using scraped and recent 2025 data.
WebKit Flaws Tied To Targeted Spyware
- Apple and Google linked two WebKit flaws to highly targeted mercenary spyware attacks that may have been exploited against specific individuals before iOS 26.
- The flaws affected WebKit across Apple's platforms and one had been patched earlier by Google in Chrome.
Coupang Breach Linked To Ex-Employee
- Seoul police traced Coupang's breach, which exposed 33.7 million customers, to a former employee who kept access after leaving the company.
- Coupang's CEO resigned and apologized after the incident, calling it the country's worst cybersecurity breach.