The Hacker News

China-Linked Hackers Have Used the PeckBirdy JavaScript C2 Framework Since 2023

Experts details PeckBirdy, a JavaScript C2 framework used since 2023 by China-aligned attackers to spread malware via fake ...
The Hacker News

Two High-Severity n8n Flaws Allow Authenticated Remote Code Execution

Researchers disclosed two n8n vulnerabilities that let authenticated users bypass JavaScript and Python sandboxes to run ...
CNET

From Clawdbot to Moltbot: How This AI Agent Went Viral, and Changed Identities, in 72 Hours

An AI tool that can text you and use your apps? It blew up online. What came next involved crypto scammers, IP lawyers and ...

Yottaa Launches Industry-First MCP Server Purpose-Built for eCommerce Performance Intelligence

First Capability Enables Real-Time Web Performance Insights via AI ClientsWALTHAM, Mass.--(BUSINESS WIRE)--Yottaa, the ...
diginomica

Axos Bank’s Kevin Hearn simplifies, trains and embraces AI

Hearn has layered low-code applications over the top of the full stack of Axos Bank technologies. This, he says, has created data aggregation opportunities and the management of application ...

Critical sandbox escape flaw found in popular vm2 NodeJS library

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.