Microsoft adds Windows protections for malicious Remote Desktop files

Microsoft has introduced new Windows protections to defend against phishing attacks that abuse Remote Desktop connection ...
InfoWorld

Critical flaw in Marimo Python notebook exploited within 10 hours of disclosure

The CVSS‑9.3 vulnerability allows unauthenticated remote code execution on exposed Marimo servers and was exploited in the wild shortly after disclosure, Sysdig says.
GitHub

BAGEL: Protein Engineering via Exploration of an Energy Landscape

BAGEL is a model-agnostic, modular, fully customizable Python framework for programmable protein design. The package formalizes the protein design task as an optimization (sampling) over an energy ...
The Hacker News

Over 1,000 Exposed ComfyUI Instances Targeted in Cryptomining Botnet Campaign

Over 1,000 exposed ComfyUI instances exploited via unauthenticated code execution, enabling Monero mining and botnet expansion.
IEEE

Change Detection on Remote Sensing Images Using a Dual-Branch Architecture With State Space Modeling and Graph-Based Local Interaction Network

Abstract: In recent years, with the rapid development of remote sensing technology, the acquisition capability of high-resolution images has been significantly improved. However, change detection (CD) ...
The Hacker News

36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants

Strapi plugins exploit Redis and PostgreSQL via postinstall scripts, enabling persistent access and data theft.
IEEE

Real-time Hand Gesture Recognition Using Python and Web Application

Abstract: The recognition and tracking of hand gestures are essential elements in human-computer interaction systems, providing intuitive control and facilitating interaction with a wide range of ...
GitHub

AWS AppSync MCP Server

The AWS AppSync MCP Server simplifies the management of APIs by providing capabilities to create graphQL APIs, data sources, resolvers, and other AppSync resources. This allows for streamlined API ...