The Hacker News

Researchers Uncover Chrome Extensions Abusing Affiliate Links and Stealing ChatGPT Access

Experts uncovered malicious Chrome extensions that replace affiliate links, exfiltrate data, and steal ChatGPT authentication tokens from users.
AARP

A Pandemic of Loneliness Swept Nursing Homes During COVID-19. Could It Happen Again?

Before the coronavirus pandemic upended Pat Weaver’s routine, her days followed a steady schedule: morning coffee with her ...
CSO Online

Critical RCE bugs expose the n8n automation platform to host‑level compromise

A JavaScript sandbox bug rated CVSS 9.9 enables attackers to bypass AST‑based protections, while a Python execution bypass ...

New sandbox escape flaw exposes n8n instances to RCE attacks

Two vulnerabilities in the n8n workflow automation platform could allow attackers to fully compromise affected instances, access sensitive data, and execute arbitrary code on the underlying host.
Infosecurity Magazine

Critical and High Severity n8n Sandbox Flaws Allow RCE

Two critical security flaws in n8n have exposed sandboxing vulnerabilities, enabling remote code execution for attackers ...
AARP

Government Shutdown Halts Most Home Medicare Telehealth Coverage

Spending bill passed by the House last week would pay for telemedicine appointments until Dec. 31, 2027, but provides no ...