Microsoft

When prompts become shells: RCE vulnerabilities in AI agent frameworks

New research exposes how prompt injection in AI agent frameworks can lead to remote code execution. Learn how these ...
Decrypt

Chrome Deleted Its Own Privacy Promise for Sneaky On-Device AI

Chrome is quietly installing a 4GB AI on your devices. Now, its latest version has removed the promise to keep your data off ...

Google’s Mueller: Vibe Coding Won’t Handle Your SEO For You

Google's John Mueller and Martin Splitt shared their vibe coding experiences, noting that AI tools still need specific SEO ...
The Hacker News

vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Execution

CVE-2026-44009 (CVSS score: 9.8) - A vulnerability that allows sandbox escape via a null proto exception and permits an ...

Critical vm2 sandbox bug lets attackers execute code on hosts

A critical vulnerability in the popular Node.js sandboxing library vm2 allows escaping the sandbox and executing arbitrary ...

Online archives of over 20 years of tech reporting | The Register

Dive into The Register's online archive of incisive tech news reporting, features, and analysis dating back to 1998 ...