CSO Online

Critical flaw in Marimo Python notebook exploited within 10 hours of disclosure

A single unauthenticated connection gives attackers a full shell; credential theft observed in under three minutes on honeypot servers.
Barron's

Zhejiang Expressway Co. Ltd.

Nordea 2 - BetaPlus Enhanced Emerging Markets Sus. Equity Fd.
IEEE

MASCOT: Analyzing Malware Evolution Through a Well-Curated Source Code Dataset

Abstract: In recent years, the explosion of malware and extensive code reuse have formed complex evolutionary connections among malware specimens. The rapid pace of development makes it challenging ...

Critical Marimo pre-auth RCE flaw now under active exploitation

A critical pre-authentication remote code execution (RCE) vulnerability in Marimo is now under active exploitation, leveraged ...
PCMag

This New Malware Lives on the Blockchain and Can't Ever Be Deleted. Here's What It Can Do

Hundreds of thousands of credentials from hundreds of companies are already compromised. Experts warn the campaign could ...

How AI is getting better at finding security holes

Anthropic announced this week that its new model found security flaws in "every major operating system and web browser." Even ...
The Hacker News

GlassWorm Campaign Uses Zig Dropper to Infect Multiple Developer IDEs

GlassWorm uses a fake WakaTime VS Code extension to infect IDEs, deploy RATs, and steal data, prompting urgent credential ...