Morning Overview on MSN

Malicious open-source packages have surged 73% in 2026 as attackers poison the software ...

In March 2026, someone hijacked a maintainer account for Axios, a JavaScript HTTP library downloaded more than 45 million ...

Shuttered Walmart could become library branch, data processing facility

Milwaukee’s Plan Commission is scheduled May 18 to consider two zoning-related requests tied to the former Walmart property ...
American Library Association

Free Webinars

Available free to ALA individual members! Learn how different communities are approaching staff training and handling interactions when ICE enters a public library. A broad-ranging conversation about ...
The Hacker News

vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Execution

CVE-2026-44009 (CVSS score: 9.8) - A vulnerability that allows sandbox escape via a null proto exception and permits an ...
CSO Online

13 new critical holes in JavaScript sandbox allow execution of arbitrary code

Thirteen critical vulnerabilities have been found in the vm2 JavaScript sandbox package that could allow an attacker’s code ...

Critical vm2 sandbox bug lets attackers execute code on hosts

A critical vulnerability in the popular Node.js sandboxing library vm2 allows escaping the sandbox and executing arbitrary ...

Kansas affiliate of global company proposes $150M solar farm south of Wichita

More solar developments are being proposed in Sedgwick County as the industry experiences significant growth in the state.