CSO Online

Critical bug in popular vm2 Node.js sandboxing library puts projects at risk

Sandbox escape vulnerability in vm2, used by nearly 900 NPM packages, allows attackers to bypass security protections and ...
SecurityWeek

‘PackageGate’ Flaws Open JavaScript Ecosystem to Supply Chain Attacks

Vulnerabilities in the NPM, PNPM, VLT, and Bun package managers could lead to protection bypasses and arbitrary code ...
Yahoo

Sean Penn ‘Kept Chain-Smoking’ Inside the Golden Globes Despite Warnings, Actor ‘Listens to No One’

Add Yahoo as a preferred source to see more of our stories on Google. “He was indifferent to the warnings. He kept chain-smoking like it was nothing,” one insider told Shuter. “Staff didn’t know ...
The Hacker News

Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution

A critical vm2 Node.js vulnerability (CVE-2026-22709, CVSS 9.8) allows sandbox escape via Promise handler bypass.
Inside Climate News

Coal Communities Accuse Congress of Breaking Its Promise to Clean Up Abandoned Mine Lands

When the Infrastructure Investment and Jobs Act was signed into law in 2021, authorizing more than $11 billion in new funding to reclaim lands and waterways damaged by abandoned coal mines, the people ...
Finanznachrichten

Inside Zoomex: What "Proof Over Promises" Means in Practice

VICTORIA, Seychelles, Jan. 21, 2026 /PRNewswire/ -- As transparency becomes a defining standard in crypto trading, platforms are increasingly judged on how clearly they handle asset custody, ...
PR Newswire

Inside Zoomex: What "Proof Over Promises" Means in Practice

A recent BeInCrypto review examines Zoomex's transparency-first approach, focusing on how the exchange addresses user-first design, asset visibility, and withdrawal reliability under real trading ...