Critical Marimo pre-auth RCE flaw now under active exploitation

A critical pre-authentication remote code execution (RCE) vulnerability in Marimo is now under active exploitation, leveraged ...
IEEE

Building Modular OPC UA Testbed Components for Industrial Security Pentesting

Abstract: This paper presents a modular approach to facilitate the design and creation of vulnerable testbed devices to perform penetration tests and generate data sets for future work on anomaly ...

New Infinity Stealer malware grabs macOS data via ClickFix lures

A new info-stealing malware named Infinity Stealer is targeting macOS systems with a Python payload packaged as an executable using the open-source Nuitka compiler.
Business Insider

Hadrian Launches Nova – an Agentic Pentesting Solution Bringing Deep, Autonomous Testing to External Exposure Management

SAN FRANCISCO, March 24, 2026 (GLOBE NEWSWIRE) -- Hadrian today announced the launch of its agentic pentesting solution, called Nova. The new solution extends the depth of its core external exposure ...
Security Boulevard

ProjectDiscovery Launches Neo, an Autonomous Pentesting Platform, at RSAC 2026

ProjectDiscovery launched Neo commercially at RSAC 2026, bringing an autonomous penetration testing platform to market after winning the RSAC Innovation Sandbox in 2025. Neo performs end-to-end ...
Morningstar

Cobalt Introduces New AI Capabilities for Continuous Pentesting

RSA Conference -- Cobalt, the pioneer of penetration testing as a service (PTaaS) and a leading provider of human-led, AI-powered offensive security solutions, today announced new AI capabilities for ...