CSO Online

Supply-chain attacks take aim at your AI coding agents

A North Korean APT has crafted malicious software packages to appeal to AI coding agents, while ‘slopsquatting’ shows the ...
The Hacker News

vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Execution

CVE-2026-44009 (CVSS score: 9.8) - A vulnerability that allows sandbox escape via a null proto exception and permits an ...

Critical vm2 sandbox bug lets attackers execute code on hosts

A critical vulnerability in the popular Node.js sandboxing library vm2 allows escaping the sandbox and executing arbitrary ...
CNBC

The best password managers of 2026

Password managers store your usernames, passwords and email addresses and protect them from unauthorized access. Beyond helping to generate strong passwords and sync them across all your devices, the ...
Cult of Mac

Manage all your logins the smart way with Apple’s free Passwords app

The time has come to stop using the same passwords and use a password manager. Image: D. Griffin Jones/Cult of Mac The Apple Passwords app makes it easier than ever to save login details for your apps ...