Critical sandbox escape flaw found in popular vm2 NodeJS library

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.
The Hacker News

Researchers Uncover Chrome Extensions Abusing Affiliate Links and Stealing ChatGPT Access

Experts uncovered malicious Chrome extensions that replace affiliate links, exfiltrate data, and steal ChatGPT authentication tokens from users.
The Hacker News

China-Linked UAT-8099 Targets IIS Servers in Asia with BadIIS SEO Malware

Cisco Talos links China-based UAT-8099 to IIS server attacks using BadIIS malware for regional SEO fraud, targeting Thailand ...
The Caledonian-Record

EU opens probe into Musk's Grok over sexual AI deepfakes

The EU on Monday hit Elon Musk's X with an investigation over AI chatbot Grok's generation of sexualised deepfake images of women and minors, in the latest step of an ...
Nature

Critical social media posts linked to retractions of scientific papers

Posts on social-media platform X that are critical of scientific research can act as early warning signs of problematic ...
The Root on MSN

Meagan Good’s Ex Devon Franklin Slammed for His ‘Performative’ Dating Advice About “Thirst Traps”

Devon Franklin candidly opens up about the moment he knew he would divorce ex-wife Meagan Good and what it was like dating ...

Erik ten Hag’s £47m signing in transfer talks to quit Man Utd for former club

The 29-year-old joined United with weighty expectations on his shoulders in a transfer deal worth in the region of £47million ...