Critical vm2 sandbox bug lets attackers execute code on hosts

A critical vulnerability in the popular Node.js sandboxing library vm2 allows escaping the sandbox and executing arbitrary ...
Bleeping Computer

Critical flaw in Protobuf library enables JavaScript code execution

Proof-of-concept exploit code has been published for a critical remote code execution flaw in protobuf.js, a widely used JavaScript implementation of Google's Protocol Buffers. The tool is highly ...

One command turns any open-source repo into an AI agent backdoor. OpenClaw proved no supply-chain scanner has a detection category for it

CLI-Anything generates SKILL.md files that AI agents trust and execute. Snyk found 13.4% of agent skills contain critical ...
CSO Online

Critical Cursor bug could turn routine Git into RCE

A flaw in Cursor’s AI agent lets malicious repositories trigger arbitrary code execution through routine Git operations, now ...
The Hacker News

Researchers Uncover 73 Fake VS Code Extensions Delivering GlassWorm v2 Malware

VS Code extensions since Dec 21, 2025 fuel GlassWorm v2, installing cross-IDE malware and stealing credentials.

Mozilla uses Anthropic's Mythos to uncover 271 bugs in Firefox 150

The result, in the view of Firefox CTO Bobby Holley, marks a decisive shift in the long-running asymmetry between attackers ...
The Next Web

Mozilla patched 271 Firefox bugs found by Anthropic’s Mythos, and says the zero-day era has an expiration date

Firefox 150 ships 271 bug fixes found by Claude Mythos Preview. Mozilla says the defects are finite. The UK AI Security Institute says the model can also attack autonomously.
The National Law Review

Australia’s Exposure Draft Children’s Online Privacy Code – What this could mean for your business?

We collaborate with the world's leading lawyers to deliver news tailored for you. Sign Up for any (or all) of our 25+ Newsletters. Some states have laws and ethical rules regarding solicitation and ...
CoinDesk

Move over bitcoin and quantum risks. Anthropic's Mythos AI could have major implications for DeFi

Anthropic has built an AI model that can autonomously find and exploit zero-day software vulnerabilities at a level the company says surpasses decades of human security research and every automated ...
WGAL

Archie, a 4-year-old Vizsla home after 15 days on the run

SCARED AND SHE LET HIM OUTSIDE. THIS WIRE PUSHED OVER THE THIEVES WHO WERE VACATIONING IN FLORIDA AT THE TIME FIGURE ONCE OUTSIDE THE FOUR YEAR OLD VIZSLA JUMPED TWO FENCES IN THE BACKYARD. FEBRUARY ...
Hosted on MSN

Tiny microwave-photon detector could boost quantum sensing and computing

A research team led by Pasquale Scarlino at EPFL has built a small, tunable detector capable of sensing individual microwave photons and converting them into measurable electrical current. The device ...