Attackers Use LLM Agent for Post-Exploitation After Marimo CVE-2026-39987 Exploit
What's new: Attackers have exploited the Marimo network vulnerability CVE-2026-39987 to gain initial access and subsequently used a large language...
Year: 2026
NSAuditor AI EE 0.15.6 Closes Two Cross-Framework Audit-Routing Defects on S3 Public-Exposure — NIST CSF and PCI DSS Now Catch a Public Bucket; A Missing Guardrail No Longer Reads as a Confirmed Breach
Nsasoft US LLC has shipped NSAuditor AI EE 0.15.6, the forty-fourth consecutive trio-publish of its local-first, zero-data-exfiltration enterprise security scanner....
JINX-0164 Targets Cryptocurrency Firms with Fake Recruiter Lures and macOS Malware
What's new: A new threat actor, tracked as JINX-0164, is targeting cryptocurrency firms using recruitment-themed social engineering tactics and custom...
Microsoft Slams Public Zero-Day Disclosures Amid GitHub Researcher Account Removal
What's new: Microsoft has criticized the public disclosure of multiple zero-day vulnerabilities affecting Windows components, including Defender and BitLocker, by...
NSAuditor AI EE 0.15.4 Closes the Silent-Overwrite ?versionId= Attack and Differentiates Public WRITE-Class S3 Access
Nsasoft US LLC has shipped NSAuditor AI EE 0.15.4, the forty-second consecutive trio-publish of its local-first, zero-data-exfiltration enterprise security scanner....
