The Hacker News

⚡ Weekly Recap: Chrome 0-Day, UniFi Exploits, macOS Stealers, VPN Flaw and More

This week’s recap covers exploited flaws, supply chain attacks, phishing kits, AI lures, macOS stealers, urgent CVEs, tools, ...
The Eastern Herald

Chrome’s Fifth Zero-Day of 2026 Is a Warning About V8, Not Just a Patch

MOUNTAIN VIEW – The update notification landed quietly inside Chrome on Monday: version 149.0.7827.103, a fix for 74 security vulnerabilities. Most users who clicked “Relaunch” never knew one of those ...
Android

Chrome 149 Lands to Fight an Active, In-the-Wild Security Threat: Update Right Now

Google has launched Chrome version 149 to address more than 70 security vulnerabilities, prominently featuring a high-severity zero-day exploit tracked as CVE-2026-11645. Discovered by an independent ...
Bleeping Computer

Critical vm2 sandbox bug lets attackers execute code on hosts

A critical vulnerability in the popular Node.js sandboxing library vm2 allows escaping the sandbox and executing arbitrary code on the host system. The security issue is tracked as CVE-2026-26956 and ...
makeuseof

I opened the same 10 tabs in Chrome, Edge, Firefox, and Brave — this one uses the least

I'm a long-term Chrome user. For better or worse, I stick with Chrome and my dazzling array of script-blocking and privacy-extending extensions. The thing is, I have enough RAM to run Chrome, and I ...
Medscape

Internal Medicine

Experts and cancer survivors discuss facing the unexpected: fertility risks from cancer treatment and added health risks from surviving both HIV infection and cancer. Many Paths, One Purpose: Treating ...
GitHub

⚡ CVE-2026-5281 - Chrome Dawn WebGPU Use-After-Free

On April 1, 2026, Google released a Chrome security update addressing 21 vulnerabilities, one of which, CVE-2026-5281, was already being actively exploited in the wild at the time of disclosure. Three ...
The Business Journals

Rodeo ready: Inside a longtime Texas ranch family's major Brahman-breeding operation

To continue reading this content, please enable JavaScript in your browser settings and refresh this page. Preview this article 1 min Catherine Neumayr, V8 Ranch ...
The Hacker News

Critical Node.js Vulnerability Can Cause Server Crashes via async_hooks Stack Overflow

Node.js has released updates to fix what it described as a critical security issue impacting "virtually every production Node.js app" that, if successfully exploited, could trigger a denial-of-service ...
Computerworld

Chromium explained: How the open-source engine drives today’s browsers

Chromium provides the core engine, network stack, and architecture for Google Chrome, Microsoft Edge, and other major web browsers. The project’s code lineage traces back to 2001, forking from Apple’s ...
Hosted on MSN

Update your Chrome browser now to prevent an exploit

A zero-day vulnerability in Chromium-based browsers, identified as CVE-2025-10585, allows active exploitation through the V8 JavaScript engine's just-in-time compiler. Users are advised to update ...