New ‘LucidRook’ malware used in targeted attacks on NGOs, universities

A new Lua-based malware, called LucidRook, is being used in spear-phishing campaigns targeting non-governmental organizations ...
CSO Online

Critical flaw in Marimo Python notebook exploited within 10 hours of disclosure

A single unauthenticated connection gives attackers a full shell; credential theft observed in under three minutes on honeypot servers.

OpenAI rotates macOS certs after Axios attack hit code-signing workflow

OpenAI is rotating potentially exposed macOS code-signing certificates after a GitHub Actions workflow executed a malicious ...
Pacific Daily News

Judge sets PUA fraud case trial for Sept. 22; Forbes report says Microsoft gave FBI keys to unlock encrypted data in Guam case

District Court of Guam Magistrate Judge Michael Bordallo set a Sept. 22 trial for the Pandemic Unemployment Assistance program fraud ring case involving seven defendants, among them close family ...
PCMag

This New Malware Lives on the Blockchain and Can't Ever Be Deleted. Here's What It Can Do

Hundreds of thousands of credentials from hundreds of companies are already compromised. Experts warn the campaign could ...