Critical vm2 sandbox bug lets attackers execute code on hosts

A critical vulnerability in the popular Node.js sandboxing library vm2 allows escaping the sandbox and executing arbitrary ...

Security Patches news | The Register

Emergency patches out now for those managing the millions of domains assumed to be affected This CVSS 10.0 RCE vuln has been ...
The Hacker News

⚡ Weekly Recap: AI-Powered Phishing, Android Spying Tool, Linux Exploit, GitHub RCE & More

Critical cPanel flaw under attack, Copy Fail Linux privilege escalation, TeamPCP supply chain campaign, GitHub RCE & major ...
Ecommerce Fastlane

How To Read Your Shopify Commerce Readiness Score: What To Fix First And Why Your Operational Score Matters Most

Out of millions of Shopify merchants, fewer than 30 ever went live with OpenAI's Instant Checkout. The merchants who got it ...

Over 10,000 Zimbra servers vulnerable to ongoing XSS attacks

Over 10,000 Zimbra Collaboration Suite (ZCS) instances exposed online are vulnerable to ongoing attacks exploiting a ...

60,000 WordPress sites at risk due to plugin security flaw

Hackers can now take over WordPress sites instantly using a simple plugin flaw ...
CSOonline

LangChain path traversal bug adds to input validation woes in AI pipelines

The path traversal flaw, allowing access to arbitrary files, adds to a growing set of input validation issues in AI pipelines. Security researchers are warning that applications using AI frameworks ...
Infosecurity-magazine.com

Hackers Exploit Compromised Enterprise Identities at Industrial Scale, Warns SentinelOne

Cyber attackers have become so prolific at abusing legitimate enterprise accounts and identity systems to compromise networks that it has become a “mass-marketed impersonation crisis,” security ...
Geeky Gadgets

iOS 27 to Finally Deliver the “Smarter Siri” We’ve Been Waiting For

The “Liquid Glass” design, first introduced in iOS 26, returns in iOS 27 with significant improvements aimed at enhancing both usability and visual appeal. Apple has introduced a systemwide “Liquid ...
TechRepublic

Microsoft Outlook and 365 Hit by Widespread Outages, Users Report Login and Email Failures

Microsoft is investigating issues with Outlook and Microsoft 365 after users report login failures and missing emails, alongside known bugs in classic Outlook. Tech giant Microsoft is currently ...