Security Boulevard

Are Magic Links Secure: A Technical Deep Dive Into Email Based Authentication

Are magic links secure? A security analyst breaks down token entropy, replay protection, expiry, device binding, and email compromise risks for MojoAuth users.
The Hacker News

vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Execution

CVE-2026-44009 (CVSS score: 9.8) - A vulnerability that allows sandbox escape via a null proto exception and permits an ...
InfoWorld

13 new critical holes in JavaScript sandbox allow execution of arbitrary code

Thirteen critical vulnerabilities have been found in the vm2 JavaScript sandbox package that could allow an attacker’s code ...

macOS ClickFix attacks deliver AppleScript stealers to snarf credentials, wallets

A ClickFix campaign targeting macOS users delivers an AppleScript-based infostealer that collects credentials and live ...
CSOonline

SpyCloud’s 2026 Identity Exposure Report Reveals Explosion of Non-Human Identity Theft

New Report Highlights Surge in Exposed API Keys, Session Tokens, and Machine Identities, and more. SpyCloud, the leader in identity threat protection, today released its annual 2026 Identity Exposure ...
Dark Reading

'Cookie Bite' Entra ID Attack Exposes Microsoft 365

Attackers could exploit two key authentication cookies used by Azure Entra ID to bypass MFA and hijack legitimate user sessions — thus gaining persistent access to Entra ID-protected resources in ...
Forbes

2FA Code Warning As Hackers Steal 17 Billion Cookies To Use In Attacks

Two-factor authentication is, without a shadow of a doubt, a necessity given the current threat landscape where infostealers rule supreme. If you are not using passkeys already, then your passwords ...
Today

TODAY anchor Christmas cookie swap: Get their family-favorite recipes

The sweetest part of the holiday season is, of course, the cookies. Whether it’s a treasured family recipe, or a newly-invented tradition, just one bite can bring back so many memories. So, ahead of ...
New York Post

Crumbl’s holiday cookie has a whopping 1,200 calories: ‘The fact that this is legal is crazy’

For a pastry this delicious, that’s just the way the cookie crumbles. Crumbl Cookies debuted a holiday peppermint brownie that is great for the taste buds but bad for the waistline, gobsmacking ...