InfoWorld

Critical flaw in Marimo Python notebook exploited within 10 hours of disclosure

The CVSS‑9.3 vulnerability allows unauthenticated remote code execution on exposed Marimo servers and was exploited in the wild shortly after disclosure, Sysdig says.
The Hacker News

ThreatsDay Bulletin: Hybrid P2P Botnet, 13-Year-Old Apache RCE and 18 More Stories

PM This week in cybersecurity: botnets, RCE flaws, AI-driven attacks, stealers, and more. Fast, no-fluff roundup.
SecurityWeek

Evasive Masjesu DDoS Botnet Targets IoT Devices

The DDoS-capable Masjesu botnet focuses on evasion and persistence, but targets a broad range of IoT devices to spread.
Gadget Review on MSN

The 49-day ticking time bomb in macOS TCP networking you need to fix

macOS TCP connections fail after 49 days of uptime due to a kernel bug that only reboots can fix, affecting Mac servers and ...