The Hacker News

vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Execution

CVE-2026-44009 (CVSS score: 9.8) - A vulnerability that allows sandbox escape via a null proto exception and permits an ...
vg247

Zenless Zone Zero codes for May 2026

1st May 2026: We added new ZZZ codes. Zenless Zone Zero is the latest free-to-play RPG from HoYoverse, and if there's one thing we know about F2P games, it's that their developers love to throw out ...
Bleeping Computer

Critical flaw in Protobuf library enables JavaScript code execution

Proof-of-concept exploit code has been published for a critical remote code execution flaw in protobuf.js, a widely used JavaScript implementation of Google's Protocol Buffers. The tool is highly ...
WCVB Channel 5 Boston

New Logan shuttle service with Uber, Lyft lets riders skip to front of TSA security line

A new way to get to Boston's Logan International Airport comes with a perk that may cut down on some travel headaches -- the ability to skip to the front of TSA security check lines.The Massachusetts ...
Game Rant

Roblox: Dueling Grounds Codes

For over 5 years, Arthur has been professionally covering video games, writing guides and walkthroughs. His passion for video games began at age 10 in 2010 when he first played Gothic, an immersive ...
PCGamesN

Roblox The Forge codes

What are the latest The Forge codes? If you're tired of tending your forge as a puny human or elf, then there's no better way to pick up a free race reroll than with new codes. The rewards they offer ...
Powder

Vail Resorts Launches South Lake Tahoe Shuttle to Kirkwood, Locals Celebrate Silver Lining of Warm Season

It’s been a warm season in California, but a free shuttle will make spring skiing at Kirkwood a bit easier. Vail Resorts, the ski resort mega-corporation that sells the Epic Pass, is being celebrated ...
Gizmodo

Source Code for Anthropic’s Claude Code Leaks at the Exact Wrong Time

Anthropic just cannot keep a lid on its business. After details of a yet-to-be-announced model were revealed due to the company leaving unpublished drafts of documents and blog posts in a publicly ...
Ars Technica

Entire Claude Code CLI source code leaks thanks to exposed map file

The entire source code for Anthropic’s Claude Code command line interface application (not the models themselves) has been leaked and disseminated, apparently due ...
VentureBeat

Claude Code's source code appears to have leaked: here's what we know

VentureBeat made with Google Gemini 3.1 Pro Image Anthropic appears to have accidentally revealed the inner workings of one of its most popular and lucrative AI products, the agentic AI harness Claude ...
Bleeping Computer

AppsFlyer Web SDK hijacked to spread crypto-stealing JavaScript code

The AppsFlyer Web SDK was temporarily hijacked this week with malicious code used to steal cryptocurrency in a supply-chain attack. The payload can intercept cryptocurrency wallet addresses entered on ...
Ars Technica

Supply-chain attack using invisible code hits GitHub and other repositories

Researchers say they’ve discovered a supply-chain attack flooding repositories with malicious packages that contain invisible code, a technique that’s flummoxing traditional defenses designed to ...