SecurityWeek

Critical N8n Sandbox Escape Could Lead to Server Compromise

A critical n8n flaw could allow attackers to use crafted expressions in workflows to execute arbitrary commands on the host.
The Hacker News

Critical n8n Flaw CVE-2026-25049 Enables System Command Execution via Malicious Workflows

Critical n8n v CVE-2026-25049 allows authenticated workflow abuse to execute system commands and expose server data.
Que.com on MSN

China-linked hackers deploy PeckBirdy JavaScript C2 framework since 2023

Since 2023, multiple security investigations have highlighted a growing trend in which China-linked threat actors ...
InfoWorld

First look: Run LLMs locally with LM Studio

This desktop app for hosting and running LLMs locally is rough in a few spots, but still useful right out of the box.

Leading space command home: Alabama native to direct fast‑track move to Huntsville

The move brings up to 1,800 jobs to Redstone Arsenal. A veteran with deep Alabama ties will oversee the transition.

VIDEO: Space boom benefits full state, including Birmingham

Birmingham might not be known for its rockets, but it supplies the manufacturing, cybersecurity and financial muscle that ...

New Architecture, New Risks: One-Click to Pwn IDIS IP Cameras

Modern capabilities, such as cloud-powered management, analytics, and detection, have introduced a new architectural era to IP-based video surveillance, which remains a prominent safety feature across ...
SecurityWeek

Vulnerability Allows Hackers to Hijack OpenClaw AI Assistant

OpenClaw patched a critical vulnerability that could be exploited to hijack the increasingly popular AI assistant.

Five moments in the Alex Pretti shooting that raise red flags for policing experts

Policing experts were unanimous in saying that the situation probably could have been avoided by employing basic policing ...
CSO Online

Critical RCE bugs expose the n8n automation platform to host‑level compromise

A JavaScript sandbox bug rated CVSS 9.9 enables attackers to bypass AST‑based protections, while a Python execution bypass ...

Hackers exploit critical React Native Metro bug to breach dev systems

Hackers are targeting developers by exploiting the critical vulnerability CVE-2025-11953 in the Metro server for React Native ...