The Hacker News

Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution

A critical vm2 Node.js vulnerability (CVE-2026-22709, CVSS 9.8) allows sandbox escape via Promise handler bypass.
The Hacker News

Two High-Severity n8n Flaws Allow Authenticated Remote Code Execution

Researchers disclosed two n8n vulnerabilities that let authenticated users bypass JavaScript and Python sandboxes to run ...

New sandbox escape flaw exposes n8n instances to RCE attacks

Two vulnerabilities in the n8n workflow automation platform could allow attackers to fully compromise affected instances, ...

RenderATL 2026 to Host OpenJS Summit: Spotlighting the Future of JavaScript

RenderATL, the leading tech conference merging innovation, culture, and code, today announced a first-of-its-kind collaboration with the OpenJS Foundation to host a dedicated OpenJS Summit at ...

Hackers are using LLMs to build the next generation of phishing attacks

What if a phishing page was generated on the spot?
SecurityWeek

‘PackageGate’ Flaws Open JavaScript Ecosystem to Supply Chain Attacks

Vulnerabilities in the NPM, PNPM, VLT, and Bun package managers could lead to protection bypasses and arbitrary code ...
TechRound

Cyber Criminals Are Using LLMs For Phishing Attacks, Here’s How

Unit 42, the threat intelligence team at Palo Alto Networks, published new research showing how criminals now use large ...

Supreme Court to decide how 1988 videotape privacy law applies to online video

The Supreme Court is taking up a case on whether Paramount violated the 1988 Video Privacy Protection Act (VPPA) by ...
CSO Online

AI-powered polymorphic attack lures victims to phishing webpages

A new breed of malware uses various dynamic techniques to avoid detection and create customized phishing webpages.
The Register on MSN

How an experienced developer teamed up with Claude to create Elo programming language

Bernand Lambeau, the human half of a pair programming team, explains how he's using AI feature Bernard Lambeau, a ...
diginomica

From low code to philosophy - how ChargeGuru learnt to scale custom apps without chaos

ChargeGuru’s Head of Engineering, Laurent Salomon, tells us how he used low-code tooling and an explicit ontology to build ...