Critical vm2 sandbox bug lets attackers execute code on hosts

A critical vulnerability in the popular Node.js sandboxing library vm2 allows escaping the sandbox and executing arbitrary ...

One command turns any open-source repo into an AI agent backdoor. OpenClaw proved no supply-chain scanner has a detection category for it

CLI-Anything generates SKILL.md files that AI agents trust and execute. Snyk found 13.4% of agent skills contain critical ...
Microsoft

ClickFix campaign uses fake macOS utilities lures to deliver infostealers

Threat actors are targeting macOS users with fake utility fixes that trick them into running malicious Terminal commands.
SecurityWeek

Government, Scientific Entities Hit via Daemon Tools Supply Chain Attack

An ongoing Daemon Tools supply chain attack appears targeted at government, scientific, manufacturing, and retail entities.
CSO Online

Stealthy malware abuses Microsoft Phone Link to siphon SMS OTPs from enterprise PCs

A previously undocumented .NET trojan and its companion Pheno plugin allow attackers to capture mobile authentication codes ...

5 things to know for May 4: Hantavirus outbreak, Spirit Airlines shutdown, Iran war, gas prices, Kentucky Derby

CNN’s 5 Things AM brings you the news you need to know every morning.

DAEMON TOOLS supply chain attack ongoing since April, thousands affected

A trusted software update delivered through official channels has raised serious security concerns. Investigations reveal an ...

Weaver E-cology critical bug exploited in attacks since March

Hackers have been exploiting a critical vulnerability (CVE-2026-22679) in the Weaver E-cology office automation since ...

Scouted: Make Mom Feel Extra Special This Mother’s Day With Stunning Bouquets—Now 30% Off

Flowers are the tried-and-true Mother’s Day gifts for a reason. May 10th is sneaking up quickly, but don’t worry: ...
inews.co.uk on MSN

The Lancashire town on the front line of Reform’s next asylum battle

Distrust and misinformation have made HMOs – houses in multiple occupation – an increasingly controversial topic ...
Techrights

Links 03/05/2026: Water Shortages Crises and Slop Fakes "Are Coming for Your Bank Account" (Slop-Enabled Fraud)

Three Iranian men pressed rehydrated raisins at an artisan distillery just outside New York, thousands of miles from their ...

Erich Krauz

Breaking news from the worlds of technology and entertainment, and expert reviews of the latest consumer tech products.