The Hacker News

vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Execution

CVE-2026-44009 (CVSS score: 9.8) - A vulnerability that allows sandbox escape via a null proto exception and permits an ...

Critical vm2 sandbox bug lets attackers execute code on hosts

A critical vulnerability in the popular Node.js sandboxing library vm2 allows escaping the sandbox and executing arbitrary ...

Online archives of over 20 years of tech reporting | The Register

Dive into The Register's online archive of incisive tech news reporting, features, and analysis dating back to 1998 ...

Trellix discloses data breach after source code repository hack

Cybersecurity firm Trellix disclosed a data breach after attackers gained access to "a portion" of its source code repository ...

Amber Kanwar’s Weekly Setup: What to watch out for in this week’s earnings bonanza

MCD-N is trading around a 10-month low ahead of its earnings report this week. Since the war in Iran began, the stock is down ...
Nation

How Kenyan girls are shaping the future of ICT

The 21-year-old is the Country Lead for Girls in Robotics Kenya Chapter and co-founder of Space Shift, mentorship roles she ...

Hackers accessed personal information for up to 70,000 people in Canada Life data breach

One of Canada’s largest life and health insurers says a recent data breach has exposed the personal information of up to 70,000 customers, with the majority of accounts hacked belonging to one large ...
TechCrunch

Hackers are abusing unpatched Windows security flaws to hack into organizations

Hackers have broken into at least one organization using Windows vulnerabilities published online by a disgruntled security researcher over the last two weeks, according to a cybersecurity firm. On ...
Inc

They Shared Coffee and Code—Then Stole $285 Million in a North Korea–Linked Crypto Hack

One of the largest cryptocurrency trading platforms revealed last week that an attack led to the theft of $285 million with user’s funds being affected. They allege that this is the result of a months ...
Fox News

FBI notified Congress last week of China-linked hack deemed 'major incident'

FBI officials recently reached out to members of Congress to alert them to a cyber hack classified as a "major incident." Fox News is told that China is the culprit and that the breach could pose a ...
VentureBeat

Hackers slipped a trojan into the code library behind most of the internet. Your team is probably affected

Attackers stole a long-lived npm access token belonging to the lead maintainer of axios, the most popular HTTP client library in JavaScript, and used it to publish two poisoned versions that install a ...