The Hacker News

Marimo RCE Flaw CVE-2026-39987 Exploited Within 10 Hours of Disclosure

Marimo CVE-2026-39987 exploited within 10 hours of disclosure, enabling unauthenticated RCE and credential theft, emphasizing urgent patching needs.
eLife

New idtracker.ai rethinks multi-animal tracking as a representation learning problem to increase accuracy and reduce tracking time

Identification of each animal in a collective becomes possible even when individuals are never all visible simultaneously, enabling faster and more accurate analysis of collective behavior.
eLife

Molidustat Targets a Synthetic Lethal Vulnerability in APC-Mutant Colorectal Cancer through GSTP1 and PHD2 Co-Inhibition

This important paper substantially advances our understanding of how Molidustat may work, beyond its canonical role, by identifying its therapeutic targets in cancer. This study presents a compelling ...
Hackaday

This Week In Security: The Supply Chain Has Problems

The biggest story of the week is a new massive supply chain breach, which appears to be unrelated to the previous massive supply chain breaches, this time of the Axios HTTP project. Axios was ...
The Hacker News

36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants

Strapi plugins exploit Redis and PostgreSQL via postinstall scripts, enabling persistent access and data theft.