Cyber Daily

Update now! Fortinet discloses actively exploited critical flaw in FortiOS, FortiManager, and FortiAnalyzer

CVE-2026-24858 affects dozens of Fortinet products and has already been added to CISA’s list of known exploited ...
The Hacker News

Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution

A critical vm2 Node.js vulnerability (CVE-2026-22709, CVSS 9.8) allows sandbox escape via Promise handler bypass.
InfoQ

Google Releases Gemma 3 270M Variant Optimized for Function Calling on Mobile and Edge Devices

FunctionGemma is a new, lightweight version of the Gemma 3 270M model, fine-tuned to translate natural language into ...

I used one simple script to remove AI from popular browsers (including Chrome and Firefox)

I used one simple script to remove AI from popular browsers (including Chrome and Firefox) ...

Hackers can bypass npm’s Shai-Hulud defenses via Git dependencies

Koi security researchers found that when NPM installs a dependency from a Git repository, configuration files such as a ...

Builders FirstSource: Not Worth Shorting, Not Worth Getting Excited About Either

Builders FirstSource (BLDR) which provides building products and manufactured components for homebuilders, contractors and ...

Stifel Financial Corp. (SF) Q4 2025 Earnings Call Transcript

Ooops... Something went wrong while loading this page.

Critical sandbox escape flaw found in popular vm2 NodeJS library

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.

Heroic former PC Gamer writer creates a script to banish all the AI features from Google Chrome

Just the Browser removes a bunch of AI cruft and telemetry garbage, and it's incredibly easy to use. It supports Firefox and Edge, too!