Morning Overview on MSN

Researchers warn open-source AI is a gold mine for cybercriminals

Open models were supposed to democratize artificial intelligence. Instead, security researchers now say they are handing cybercriminals industrial grade tools that can be downloaded, modified, and ...
Microsoft

Infostealers without borders: macOS, Python stealers, and platform abuse

How modern infostealers target macOS systems, leverage Python‑based stealers, and abuse trusted platforms and utilities to distribute credential‑stealing payloads.

Fintech firm Marquis blames hack at firewall provider SonicWall for its data breach

The fintech giant said it plans to "seek recoupment of any expenses" from its firewall provider SonicWall after a 2025 data ...
Microsoft

Microsoft SDL: Evolving security practices for an AI-powered world

Discover Microsoft’s holistic SDL for AI combining policy, research, and enablement to help leaders secure AI systems against evolving cyberthreats.
Network World

Cisco adds intelligent policy enforcement to mesh firewall family

Cisco's Mesh Policy Engine supports its own firewalls as well as third-party firewalls from vendors including Palo Alto Networks, Fortinet, and Juniper.

I tried a Claude Code alternative that's local, open source, and completely free - how it works

I tried a Claude Code alternative that's local, open source, and completely free - how it works ...
LinuxInsider

Weaponized Python and Linux Malware Target Executives and Cloud Systems

Two malware campaigns weaponize open-source software to target executives and cloud systems, combining social engineering ...
The Hacker News

Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan

Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.
PCMag

Chinese Hackers Hit Notepad++ to Serve Malicious Update

The program is a free text and code editor that's been downloaded millions of times. The compromise began in June and is ...