CSO Online

13 new critical holes in JavaScript sandbox allow execution of arbitrary code

Thirteen critical vulnerabilities have been found in the vm2 JavaScript sandbox package that could allow an attacker’s code ...
The Caledonian-Record

EHDS Readiness Shifts from EU Policy to Provider Budget and Vendor Accountability

Black Book Research's Pre-HIMSS26 Europe study of 881 healthcare leaders across 14 countries finds European Health Data Space ...
InfoWorld

Four cutting-edge tools for spec-driven development

Kiro, Spec Kit, Tessl, and Zenflow offer a more systematic and structured approach to developing with AI agents than vibe ...

Critical vm2 sandbox bug lets attackers execute code on hosts

A critical vulnerability in the popular Node.js sandboxing library vm2 allows escaping the sandbox and executing arbitrary ...
Dark Reading

'FrostyNeighbor' APT Carefully Targets Govt Orgs in Poland, Ukraine

A known Belarussian cyber-espionage group is back with a threat campaign against targets in Eastern Europe that uses spear-phishing to deliver malicious payloads to Eastern European government and ...

Protect your enterprise now from the Shai-Hulud worm and npm vulnerability in 6 actionable steps

TanStack had 2FA, OIDC publishing, and Sigstore provenance on every release. The Mini Shai-Hulud worm published 84 malicious ...
londonlovesbusiness.com

Top 10 new and promising API testing tools in 2025-2026

The API testing landscape has changed dramatically in the past twelve months. The old classics—Postman, SoapUI, and REST Assured—are still widely used, but a new wave of tools has quietly crossed the ...

Asentum Nears $ASE Launch as Global Validator Participation Accelerates Across Its Post-Quantum Blockchain

Asentum , a post-quantum Layer-1 blockchain built from the ground up for long-term security and accessibility, is seeing ...
Dark Reading

Worm Redux: Fresh Mini Shai-Hulud Infections Bite Supply Chain

Hundreds of npm packages infected by the self-propagating, credential-stealing worm from TeamPCP are related to the open ...

Will Selenium WebDriver shape the next generation of software testing?

Developing outstanding software is vital to business success in the contemporary digital society. As software programs get ...

BrowserAct Open-Sources Two AI-Agent Skills, Giving Agents the Power to Use the Real Web

Then imagine it replying: "Sorry, the website won't let me in." That's the quiet failure mode behind most AI agents today.
Communications of the ACM

Good Vibes: AI Coding Tools and Platforms

Technology that helps write computer code is not new, but advances in generative AI (GenAI) and agentic AI have catapulted ...