InfoWorld

Critical flaw in Marimo Python notebook exploited within 10 hours of disclosure

The CVSS‑9.3 vulnerability allows unauthenticated remote code execution on exposed Marimo servers and was exploited in the wild shortly after disclosure, Sysdig says.

ComfyUI servers: Attackers turn instances into a cryptominer proxy botnet

More than 1000 ComfyUI servers are exposed to the internet. Attackers exploit misconfigurations to add instances to a botnet.
GitHub

CleanNet — DPI Bypass Engine

A lightweight, single-file Python tool that bypasses ISP-level Deep Packet Inspection (DPI) by fragmenting TLS ClientHello packets. It runs entirely on your machine as a local HTTP proxy ...
GitHub

Async proxy scraper and checker

python proxyz.py -s -c -p [protocol] -i [input] -o [output] -w [workers] -t [timeout] -u [check URL] [-s, --scrape] Scrape proxies - arguments: -p, -o (required) -c ...
The Hacker News

Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan

Cybersecurity researchers have discovered two malicious packages in the Python Package Index (PyPI) repository that masquerade as spellcheckers but contain functionality to deliver a remote access ...
Bleeping Computer

GreyNoise launches free scanner to check if you're part of a botnet

GreyNoise Labs has launched a free tool called GreyNoise IP Check that lets users check if their IP address has been observed in malicious scanning operations, like botnet and residential proxy ...