North Korean Hackers Target High-Profile Node.js Maintainers Cybersecurity April 7, 2026 The North Korean threat actor blamed for the Axios supply chain attack has been aiming its social engineering campaign at…
Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution Cybersecurity January 28, 2026 Ravie LakshmananJan 28, 2026Vulnerability / Open Source A critical sandbox escape vulnerability has been disclosed in the popular vm2 Node.js…
