CSO Online

Critical flaw in Marimo Python notebook exploited within 10 hours of disclosure

A single unauthenticated connection gives attackers a full shell; credential theft observed in under three minutes on honeypot servers.
Dark Reading

APT41 Delivers 'Zero-Detection' Backdoor to Harvest Cloud Credentials

The China-backed threat group is targeting AWS, Google, Azure, and Alibaba cloud environments and using typosquatting to ...

Critical Marimo pre-auth RCE flaw now under active exploitation

A critical pre-authentication remote code execution (RCE) vulnerability in Marimo is now under active exploitation, leveraged ...
Anadolu Ajansi

Israeli forces fire phosphorus shells at towns in southern Lebanon, state media says

Israeli forces carried out artillery shelling using phosphorus munitions Thursday targeting towns in southern Lebanon, according to Lebanon’s state-run National News Agency (NNA). The shelling struck ...