The Hacker News

Cohere AI Terrarium Sandbox Flaw Enables Root Code Execution, Container Escape

CVE-2026-5752 CVSS 9.3 flaw in Terrarium enables root code execution via Pyodide prototype traversal, risking container ...
The Hacker News

Google Patches Antigravity IDE Flaw Enabling Prompt Injection Code Execution

Antigravity Strict Mode bypass disclosed Jan 7, 2026, patched Feb 28, enables arbitrary code execution via fd -X flag.

CFO McGivney’s Expanded Role Puts Marsh And McLennan Execution In Focus

Marsh & McLennan Companies (NYSE:MRSH) has expanded CFO Mark McGivney’s role to include EVP and COO responsibilities. The leadership change is intended to tighten execution on top priorities and speed ...

Aokah Launches Explorer and Builder: The First AI-Powered Platform to Take Enterprises from GCC Strategy to Execution

Aokah, the GCC Operating SystemsM purpose-built to orchestrate Global Capability Centers from strategy through scale, today announced the general availability of Explorer and Builder -- two integrated ...

Microsoft to offer voluntary retirement buyouts to about 7% of the US workforce

The program, covering roughly 8,750 employees, marks the first such buyout in Microsoft’s history as the company ramps up AI ...

Is Altimmune a Buy Before Phase III MASH Starts in 2026?

ALT heads into a high-stakes 2026 as pemvidutide drives key phase III and mid-stage catalysts that could reshape its ...
CSO Online

Riddled with flaws, serial-to-Ethernet converters endanger critical infrastructure

Remote terminal units, PLCs, PoS systems, and bedside patient monitors may be susceptible to remote code execution, ...

Critical vulnerability in Ruby's standard library ERB:attackers can execute code

The Ruby vulnerability is not easy to exploit, but allows an attacker to read sensitive data, start code, and install ...

How indirect prompt injection attacks on AI work - and 6 ways to shut them down

How indirect prompt injection attacks on AI work - and 6 ways to shut them down ...
Security Boulevard

AI Vulnerability Chaining – Why Your Security Stack Cannot Detect What Comes Next

Mythos combined four separate low-severity bugs into a complete browser sandbox escape. Traditional scanners evaluate ...

OpenAI unveils Workspace Agents, a successor to custom GPTs for enterprises that can plug directly into Slack, Salesforce and more

Put simply: these agents can be created and accessed from ChatGPT, but users can also add them to third-party apps like Slack ...
The Week

Uniqus Consultech Signs Strategic Collaboration with Surya Financial Technologies

Uniqus Consultech, a tech-enabled global consulting platform, today announced a strategic collaboration with Surya Financial ...