📰 Marimo RCE Flaw CVE-2026-39987 Exploited Within 10 Hours of Disclosure
A critical security vulnerability in Marimo, an open-source Python notebook for data science and analysis, has been exploited within 10 hours of public disclosure, according to findings from Sysdig.The vulnerability in question is CVE-2026-39987 (CVSS score: 9.3), a pre-authenticated remote code execution vulnerability impacting all versions of Marimo prior to and including.
🔗 Source: https://thehackernews.com/2026/04/marimo-rce-flaw-cve-2026-39987.html
#opensource #python #security
👉@sysadminoff
A critical security vulnerability in Marimo, an open-source Python notebook for data science and analysis, has been exploited within 10 hours of public disclosure, according to findings from Sysdig.The vulnerability in question is CVE-2026-39987 (CVSS score: 9.3), a pre-authenticated remote code execution vulnerability impacting all versions of Marimo prior to and including.
🔗 Source: https://thehackernews.com/2026/04/marimo-rce-flaw-cve-2026-39987.html
#opensource #python #security
👉@sysadminoff
📰 Stolen Rockstar Games analytics data leaked by extortion gang
Rockstar Games has suffered a data breach linked to a recent security incident at Anodot, with the ShinyHunters extortion gang now leaking the stolen data on its data leak site.
🔗 Source: https://www.bleepingcomputer.com/news/security/stolen-rockstar-games-analytics-data-leaked-by-extortion-gang/
#security
👉@sysadminoff
https://ift.tt/XJxy7di
Rockstar Games has suffered a data breach linked to a recent security incident at Anodot, with the ShinyHunters extortion gang now leaking the stolen data on its data leak site.
🔗 Source: https://www.bleepingcomputer.com/news/security/stolen-rockstar-games-analytics-data-leaked-by-extortion-gang/
#security
👉@sysadminoff
https://ift.tt/XJxy7di
BleepingComputer
Stolen Rockstar Games analytics data leaked by extortion gang
Rockstar Games has suffered a data breach linked to a recent security incident at Anodot, with the ShinyHunters extortion gang now leaking the stolen data on its data leak site.
📰 X.Org Server 21.1.22 Released Due To Five New Security Vulnerabilities
X.Org Server 21.1.22 is out today and driven by five new security vulnerabilities being disclosed for the aging codebase. In turn these vulnerabilities also impact XWayland too and thus necessitating the XWayland 24.1.10 release...
🔗 Source:
#security
👉@sysadminoff
https://www.phoronix.com/news/X.Org-Server-21.1.22
X.Org Server 21.1.22 is out today and driven by five new security vulnerabilities being disclosed for the aging codebase. In turn these vulnerabilities also impact XWayland too and thus necessitating the XWayland 24.1.10 release...
🔗 Source:
#security
👉@sysadminoff
https://www.phoronix.com/news/X.Org-Server-21.1.22
Phoronix
X.Org Server 21.1.22 Released Due To Five New Security Vulnerabilities
X.Org Server 21.1.22 is out today and driven by five new security vulnerabilities being disclosed for the aging codebase
📰 SteamOS 3.7.21 released to stable with security and stability updates
While Valve are working to get SteamOS 3.8 Beta into stable with lots of big changes, a small SteamOS stable update has been released.Read the full article on GamingOnLinux.
🔗 Source:
#security
👉@sysadminoff
https://www.gamingonlinux.com/2026/04/steamos-3-7-21-released-to-stable-with-security-and-stability-updates/
While Valve are working to get SteamOS 3.8 Beta into stable with lots of big changes, a small SteamOS stable update has been released.Read the full article on GamingOnLinux.
🔗 Source:
#security
👉@sysadminoff
https://www.gamingonlinux.com/2026/04/steamos-3-7-21-released-to-stable-with-security-and-stability-updates/
GamingOnLinux
SteamOS 3.7.21 released to stable with security and stability updates
While Valve are working to get SteamOS 3.8 Beta into stable with lots of big changes, a small SteamOS stable update has been released.
📰 Actively Exploited nginx-ui Flaw (CVE-2026-33032) Enables Full Nginx Server Takeover
A recently disclosed critical security flaw impacting nginx-ui, an open-source, web-based Nginx management tool, has come under active exploitation in the wild.The vulnerability in question is CVE-2026-33032 (CVSS score: 9.8), an authentication bypass vulnerability that enables threat actors to seize control of the Nginx service. It has been codenamed MCPwn by Pluto Security.".
🔗 Source: https://thehackernews.com/2026/04/critical-nginx-ui-vulnerability-cve.html
#nginx #opensource #security
👉@sysadminoff
A recently disclosed critical security flaw impacting nginx-ui, an open-source, web-based Nginx management tool, has come under active exploitation in the wild.The vulnerability in question is CVE-2026-33032 (CVSS score: 9.8), an authentication bypass vulnerability that enables threat actors to seize control of the Nginx service. It has been codenamed MCPwn by Pluto Security.".
🔗 Source: https://thehackernews.com/2026/04/critical-nginx-ui-vulnerability-cve.html
#nginx #opensource #security
👉@sysadminoff
📰 Arch Linux's Archinstall 4.2 Fixes Botched Disk Encryption Security
Archinstall 4.2 is now available as the latest update to this very convenient, text-based Arch Linux OS installer...
🔗 Source:
#arch #linux #security
👉@sysadminoff
https://www.phoronix.com/news/Archinstall-4.2
Archinstall 4.2 is now available as the latest update to this very convenient, text-based Arch Linux OS installer...
🔗 Source:
#arch #linux #security
👉@sysadminoff
https://www.phoronix.com/news/Archinstall-4.2
Phoronix
Arch Linux's Archinstall 4.2 Fixes Botched Disk Encryption Security
Archinstall 4.2 is now available as the latest update to this very convenient, text-based Arch Linux OS installer.