No sign of further protests in Iran as senior cleric calls for executions, threatens Trump

As Iran returned to uneasy calm after a wave of protests that drew a bloody crackdown, a senior hardline cleric called Friday ...
The Hacker News

Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution

A critical vm2 Node.js vulnerability (CVE-2026-22709, CVSS 9.8) allows sandbox escape via Promise handler bypass.
Reuters

GSK's chronic hepatitis B therapy shows promise in key studies, analysts await full data

LONDON, Jan 7 (Reuters) - GSK (GSK.L), opens new tab will use promising results from two studies of its experimental chronic hepatitis B therapy to support planned regulatory applications, it said on ...

Critical sandbox escape flaw found in popular vm2 NodeJS library

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.
Security Boulevard

Detecting browser extensions for bot detection, lessons from LinkedIn and Castle

Modern bot detection rarely deals with obviously fake browsers. Most large-scale automation today runs inside browser ...
Security Boulevard

What are Refresh Tokens? Complete Implementation Guide & Security Best Practices

Learn how refresh tokens work in enterprise SSO. This guide covers implementation, rotation, and security best practices for CIAM systems.

Where AI browsers fall short

Unlike regular search engines, AI browsers suffer from algorithmic inconsistency due to their black-box nature — and even ...