SecurityWeek

Sophisticated Deep#Door Backdoor Enables Espionage, Disruption

The stealthy Python-based backdoor framework deploys a persistent Windows implant likely designed for espionage.
The Hacker News

PyTorch Lightning and Intercom-client Hit in Supply Chain Attacks to Steal Credentials

Malicious Lightning 2.6.2/2.6.3 released April 30 enable credential theft via hidden payload, leading to PyPI quarantine and ...
The Hacker News

EtherRAT Distribution Spoofing Administrative Tools via GitHub Facades

GitHub facades and Ethereum smart contracts power a March 2026 admin-targeted campaign, enabling resilient C2 rotation and ...
GitHub

Bubbl Unique Bulding Block Layer on Python: Apps as executable diagrams on an 'active paper' worktop

BUBBL on Python is a GUI program development environment using a 'desktop' metaphor on which diagrams are created and then 'run' as apps. There are unique features of the development environment such ...
Bleeping Computer

Critical Marimo pre-auth RCE flaw now under active exploitation

Hackers started exploiting a critical vulnerability in the Marimo open-source reactive Python notebook platform just 10 hours after its public disclosure. The flaw allows remote code execution without ...
GitHub

how-to-inbound-synch-ms-graph.md

Use these Microsoft Azure Active Directory Module for Windows PowerShell commands to enable synchronization for a production tenant, a pre-requisite for being able to call the Administration Web ...