Federal agencies that rely on MongoDB now face a hard deadline to fix a vulnerability that lets unauthenticated attackers ...

When Oracle first released the JSON document flavor of its autonomous database 18 months ago, we popped the question: When will they get around to adding support for the MongoDB API? This week, Oracle ...

A severe vulnerability affecting multiple MongoDB versions, dubbed MongoBleed (CVE-2025-14847), is being actively exploited in the wild, with over 80,000 potentially vulnerable servers exposed on the ...

You didn't think you'd get to enjoy your time off without a major cybersecurity incident, did you? A high-severity MongoDB Server vulnerability, for which proofs of concept emerged over Christmas week ...

Attackers are actively exploiting a critical vulnerability in MongoDB to steal sensitive information directly from an affected server's memory. The attacks appear to have started on Dec. 29, barely ...

In the last Mongo Matters column, we looked at MongoDB’s new SQL interface for querying data in MongoDB Atlas. Almost all of the “NoSQL” databases today support some form of SQL interface in order to ...

When a $40 billion database industry giant takes enough interest in a technology to build its own application programming interface for it, that’s an indication the technology has legitimate appeal.

The security team of the NoSQL database software MongoDB documented a critical security vulnerability on Friday: "A client-side exploit of the server's zlib implementation can return uninitialized ...