The Hacker News

UNC6692 Impersonates IT Help Desk via Microsoft Teams to Deploy SNOW Malware

UNC6692 has been attributed to a large email campaign that's designed to overwhelm a target's inbox with a flood of spam ...

Critical Marimo pre-auth RCE flaw now under active exploitation

A critical pre-authentication remote code execution (RCE) vulnerability in Marimo is now under active exploitation, leveraged ...
SecurityWeek

Mirax RAT Targeting Android Users in Europe

Mirax RAT, a sophisticated MaaS mainly used by Russian-speaking threat actors, is targeting Android users in Europe.

Update Now: Serious GitLab Security Bugs Could Lead to System Takeovers

The government has issued a warning about serious security flaws in GitLab, cautioning organizations about potential risks to ...

Bybit AI Expands to Infrastructure Layer with Official MCP Release for Multi-Agent Trading

Bybit, the world's second-largest cryptocurrency exchange by trading volume, has launched its official Model Context Protocol (MCP), providing standardized infrastructure for professional traders and ...
InfoWorld

Critical flaw in Marimo Python notebook exploited within 10 hours of disclosure

The CVSS‑9.3 vulnerability allows unauthenticated remote code execution on exposed Marimo servers and was exploited in the wild shortly after disclosure, Sysdig says.
The Hacker News

Researchers Detect ZionSiphon Malware Targeting Israeli Water, Desalination OT Systems

Cybersecurity researchers have flagged a new malware called ZionSiphon that appears to be specifically designed to target ...
Network World

Azure SRE Agent flaw lets outsiders silently eavesdrop on enterprise cloud operations

A multi-tenant authentication gap in Microsoft’s AI operations agent exposed live command streams, internal reasoning, and ...
LondonLovesBusiness

Top 10 new and promising API testing tools in 2025-2026

Explore the top 10 new and promising API testing tools in 2025-2026 that are transforming the testing landscape.