The Hacker News

Password Reuse in Disguise: An Often-Missed Risky Workaround

Near-identical password reuse bypasses security policies, enabling attackers to exploit predictable patterns using breached ...
PCMag on MSN

I don't trust password generators, so I built my own. Here's how you can, too

Ready for the ultimate in password security? You can build your own uncrackable random generator; all you need is a ...
The Hacker News

Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution

A critical vm2 Node.js vulnerability (CVE-2026-22709, CVSS 9.8) allows sandbox escape via Promise handler bypass.

Critical sandbox escape flaw found in popular vm2 NodeJS library

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.
WeLiveSecurity

Award-winning news, views, and insight from the ESET security community

This month in security with Tony Anscombe – January 2026 edition The trends that emerged in January offer useful clues about the risks and priorities that security teams are likely to contend with ...