Critical Marimo pre-auth RCE flaw now under active exploitation

A critical pre-authentication remote code execution (RCE) vulnerability in Marimo is now under active exploitation, leveraged ...
InfoWorld

Critical flaw in Marimo Python notebook exploited within 10 hours of disclosure

The CVSS‑9.3 vulnerability allows unauthenticated remote code execution on exposed Marimo servers and was exploited in the wild shortly after disclosure, Sysdig says.

Signed software abused to deploy antivirus-killing scripts

A digitally signed adware tool has deployed payloads running with SYSTEM privileges that disabled antivirus protections on ...

Like Anthropic, OpenAI Will Share Latest Technology Only With Trusted Companies

A week after Anthropic said it would limit the release of its latest artificial intelligence technology to a small number of ...
CSO Online

RCE by design: MCP architectural choice haunts AI agent ecosystem

Unsafe defaults in MCP configurations open servers to possible remote code execution, according to security researchers who ...

Hackers used AI to steal hundreds of millions of Mexican government and private citizen records in one of the largest cybersecurity breaches ever

A group of hackers used both Claude Code and ChatGPT in a cybersecurity hack that lasted two and a half months.

Why GPT-5.4-Cyber Marks A Move Toward The Security Of Tomorrow

OpenAI's limited release of GPT-5.4-Cyber highlights that frontier AI is slowly changing how enterprises approach ...
CSO Online

The AI inflection point: What security leaders must do now

Hackers are moving at machine speed now, sometimes in under thirty seconds. To keep up, security teams must use the "AI ...
Council on Foreign RelationsOpinion

Six Reasons Claude Mythos Is an Inflection Point for AI—and Global Security

Anthropic’s new AI model has taught itself to hack into software infrastructure systems believed to be among the most secure ...

Why AI’s Biggest Bottleneck Isn’t Intelligence, It’s Orchestration

That gap between what enterprises need to automate and what their orchestration tools can handle is the overlooked AI ...

Hackers use Claude and ChatGPT to breach government agencies

Nine Mexican government agencies targeted by a single attacker with two AI tools.