The Hacker News

Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS

Six Proto6 flaws in protobuf.js enable RCE and DoS attacks; patched in versions 7.5.6 and 8.0.2 to protect Node.js services.
Opinion
Foreign AffairsOpinion

How to Counter Beijing’s Unauthorized “Distillation”

A new front has opened in the U.S.-China competition in artificial intelligence: open-weight, local AI models. Until recently, the most capable AI models were too big and too costly to run anywhere ...

For many families, cognitive decline is the biggest threat to retirement planning

Changes in memory, judgement and decision-making can leave older adults vulnerable to costly mistakes, but the signs often ...

Head of CBC looks to meet Canadians where they are amid shifting challenges

The Globe and Mail sits down with Marie-Philippe Bouchard, president and CEO of the Crown corporation to talk streaming, ...

npm tackles its riskiest security issues

With npm v12, GitHub closes a central attack vector: installation scripts from dependencies will only run after explicit ...