The Hacker News

Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution

A critical vm2 Node.js vulnerability (CVE-2026-22709, CVSS 9.8) allows sandbox escape via Promise handler bypass.
CSO Online

Critical bug in popular vm2 Node.js sandboxing library puts projects at risk

Sandbox escape vulnerability in vm2, used by nearly 900 NPM packages, allows attackers to bypass security protections and ...
National Health Executive

Government launches £200 million plan to tackle cancer inequalities

Patients living in England’s most deprived and underserved areas are set to benefit from earlier and potentially lifesaving ...

England sweep SL series in low-scoring thriller

England successfully defend a target of 129 to win by 12 runs against Sri Lanka in an enthralling contest, completing a 3-0 T20 series sweep.

JavaScript Sandbox vm2: Critical Vulnerability Allows Escape

The JavaScript sandbox vm2 for Node.js was actually discontinued. Now an update closes a critical security vulnerability.

We need a national Sunshine list, publicizing salaries of individual federal workers

Viewing federal salaries as personal information effectively uses privacy to shield details of taxpayer-funded spending ...
KSL

AI cameras now watching for wildfires in southwestern Utah

Four new high‑tech AI camera stations have been installed as part of a pilot project aimed at detecting smoke from wildfire almost instantly.
Security Boulevard

The Complete Guide to Authentication Implementation for Modern Applications

A comprehensive developer guide to implementing secure authentication in modern applications. Covers OAuth 2.0, OIDC, ...