CSO Online

Seven IBM WebSphere Liberty flaws can be chained into full takeover

A pre‑authentication bug in SAML Web SSO, combined with weak access controls and cryptography, allows attackers to escalate privileges and achieve remote code execution.
InfoWorld

Critical flaw in Marimo Python notebook exploited within 10 hours of disclosure

The CVSS‑9.3 vulnerability allows unauthenticated remote code execution on exposed Marimo servers and was exploited in the wild shortly after disclosure, Sysdig says.

$285M Hack Proved DeFi’s Decentralisation Promise Is Still A Fiction

Somewhere between the first smart contract audit and the hundredth, the attack surface moved. Nobody noticed, except the ...

How AI is getting better at finding security holes

Anthropic announced this week that its new model found security flaws in "every major operating system and web browser." Even ...