The Hacker News

Critical AdonisJS Bodyparser Flaw (CVSS 9.2) Enables Arbitrary File Write on Servers

A critical CVSS 9.2 flaw in AdonisJS bodyparser lets attackers write arbitrary files via path traversal when uploads are ...

Just Gonna Say It: The New Year Doesn’t Actually Start Until Feb So Everyone Just Relax

If you’re already convinced you’ve “wasted” 2026 because you haven’t reinvented your life by January, relax. The year hasn't ...
SecurityWeek

SAP’s January 2026 Security Updates Patch Critical Vulnerabilities

The first round of SAP patches for 2026 resolves 19 vulnerabilities, including critical SQL injection, RCE, and code ...
CSO Online

Critical jsPDF vulnerability enables arbitrary file read in Node.js deployments

The path traversal bug allows attackers to include arbitrary filesystem content in generated PDFs when file paths are not ...

Court blocks ‘arbitrary and capricious’ changes to FEMA grants

The U.S. District Court for the District of Oregon blocked the Trump administration from withholding grant money from states ...

Go Programming Language 1.26 Patches Several Security Flaws

The patched issues span core standard library components including archive/zip and net/http, as well as security-sensitive ...
Nanowerk

Metasurface chip turns 3D coordinates into encryption keys for holographic storage

A chip smaller than one square millimeter stores 160 holographic images at arbitrary 3D coordinates, with each spatial ...

I worked for ICE and CBP. Our current system makes everyone less safe.

Immigration enforcement is not focused on serious threats. It's become politicized, disconnected from reality and ...

Vitalik calls for a 'garbage collection' function to stop Ethereum bloat

Ethereum co-founder Vitalik Buterin is urging developers to confront the protocol bloat driven by an endless push to add new ...
Finger Lakes TimesOpinion

GUEST APPEARANCE: It’s all Sam’s fault — Crave the comfort of a scapegoat? He just may be your guy

If “politics” is primarily concerned with getting elected, “governance” involves performance afterwards. To a large extent, ...
The Hacker News

Fortinet Fixes Critical FortiSIEM Flaw Allowing Unauthenticated Remote Code Execution

Fortinet patches a critical FortiSIEM vulnerability (CVE-2025-64155) that allows unauthenticated remote code execution via ...
Blockonomi

Vitalik Buterin Warns Protocol Complexity Threatens Ethereum’s Decentralization Goals

Vitalik Buterin warns excessive protocol complexity undermines Ethereum's decentralization. Calls for simplification and ...