SecurityWeek

Critical Marimo Flaw Exploited Hours After Public Disclosure

A threat actor started exploiting CVE-2026-39987, an unauthenticated RCE vulnerability in Marimo, nine hours after public disclosure.
The Hacker News

ThreatsDay Bulletin: Hybrid P2P Botnet, 13-Year-Old Apache RCE and 18 More Stories

PM This week in cybersecurity: botnets, RCE flaws, AI-driven attacks, stealers, and more. Fast, no-fluff roundup.
Microsoft

Inside an AI‑enabled device code phishing campaign

A new wave of device code phishing shows how threat actors are scaling account compromise using AI and end‑to‑end automation.

Microsoft Confirms New And Widespread 2FA Code Attacks Ongoing

The Microsoft Defender Security Research Team has confirmed that a pervasive new authentication code attack is compromising ...

Device code phishing attacks surge 37x as new kits spread online

Device code phishing attacks that abuse the OAuth 2.0 Device Authorization Grant flow to hijack accounts have surged more ...

Matcha model makes drug candidate screening more than 30 times faster

Ligand Pro, founded by Skoltech professors and a Skoltech Ph.D. student, has presented Matcha, an AI-powered molecular docking model that performs virtual drug screening 30 times faster than the large ...
PCMag on MSN

Think You Can Spot Malware? These Real-World Examples Will Prove You Wrong

Most people never see malware—but after decades of testing it, I can show you exactly what it looks like.
CNBC

5 best free budgeting tools of 2026

Understanding how much you earn and spend is the key to getting control of your finances. Creating a budget gives you a better sense of where your money is going and can help you achieve financial ...