The Wire
Curated cybersecurity and tech news — AI-summarized, source attributed.
Marimo RCE Bug Exploited in the Wild Just 10 Hours After Public Disclosure
A remote code execution vulnerability in Marimo, tracked as CVE-2026-39987, was weaponized by attackers within roughly 10 hours of its public disclosure. The ra
Meta launches Muse Spark, its first post-Llama model - hosted only, no open weights
Meta released Muse Spark, a hosted model with no open weights - a sharp departure from the Llama line. Benchmarks put it roughly on par with Opus 4.6, Gemini 3.
Orion's Internal Helium Leak Prompts Extra Testing on Artemis II
NASA scrapped a planned piloting demonstration on the Artemis II mission to squeeze in additional propulsion system testing after detecting a small internal hel
Pro-Iran Activist Group Weaponizes AI Lego Videos to Mock Trump
A pro-Iranian activist collective called Explosive Media has been churning out AI-generated, Lego-themed propaganda videos mocking President Trump throughout th
Ransomware hits Dutch EHR vendor ChipSoft, knocks hospital portals offline
ChipSoft, the Dutch supplier behind the HiX electronic health record platform used across much of the Netherlands, has been hit by ransomware and pulled its Zor
Rocket Report: Chinese Falcon 9 clone fails, Artemis II nears reentry
The latest Rocket Report covers several developments in the launch industry as Artemis II approaches its most critical phase - atmospheric reentry on Friday eve
Sanders Interviews Claude on AI and Privacy, Sparks Sycophancy Debate
Bruce Schneier flags a published conversation between Senator Bernie Sanders and Anthropic's Claude on AI and privacy issues, noting the model handled the topic
Simple Tool Exposes GitHub Repo Sizes via Public API
Simon Willison built a small web tool that reveals the size of any GitHub repository - information GitHub doesn't surface in its own UI. The tool works by query
Smart Slider 3 Pro update system compromised, backdoors pushed to 900K+ sites
Attackers compromised the update distribution system for Smart Slider 3 Pro, a popular WordPress and Joomla plugin, and used it to push a trojanized version (3.
Storm-2755 hijacks Canadian payroll via AiTM phishing of Microsoft 365 sessions
Microsoft is tracking Storm-2755, a financially motivated crew rerouting Canadian employees' salary payments by stealing Microsoft 365 session tokens. Victims l
VENOM PhaaS targets C-suite Microsoft accounts with QR-based AiTM phishing
A previously undocumented phishing-as-a-service operation dubbed VENOM has been running since November against CEOs, CFOs, and VPs across industries. Abnormal r
Weekly Threat Roundup: Masjesu IoT Botnet and 13-Year Apache ActiveMQ RCE
The Hacker News' weekly ThreatsDay bulletin highlights 20 security stories, led by the Masjesu botnet and a long-dormant Apache ActiveMQ remote code execution f