Look up Mongobleed, but TLDR, it's an issue with their Zlib compression. That's allowing remote attackers to leak data relatively easily.