A joint investigation by The Associated Press and The Gecko Project has found that cyanide, arsenic and copper repeatedly leaked from a facility run by the largest gold miner in ...

CISA adds one of a pair of code injection vulnerabilities to KEV Catalog as experts warn, “this is not a drill”.

A new around of vulnerabilities in the popular AI automation platform could let attackers hijack servers and steal ...

Having largely been a South Africa-based company with a few exports here and there, under the leadership of new CEO Freddy Mugeri, Hydro Power Equipment (HPE) is aiming for global expansion. In a ...

Two vulnerabilities in n8n’s sandbox mechanism could be exploited for remote code execution (RCE) on the host system.

ESET researchers have uncovered an Android spyware campaign that uses romance scam tactics to target individuals in Pakistan.The campaign leverages the GhostChat spyware, which enables covert ...

Sandbox escape vulnerability in vm2, used by nearly 900 NPM packages, allows attackers to bypass security protections and ...

Two critical security flaws in n8n have exposed sandboxing vulnerabilities, enabling remote code execution for attackers ...

A critical vm2 Node.js vulnerability (CVE-2026-22709, CVSS 9.8) allows sandbox escape via Promise handler bypass.

New version of the open-source replacement for Microsoft Silverlight also brings support for .NET 10 and C# 14.

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.