The arrival of April also means a special full moon will appear in the sky above Milwaukee. The full moon happening April 1 is known as the "pink" moon, though be warned: it won’t actually be pink.

The bug was assigned CVE-2025-2135, and we successfully used it to pwn Google’s V8CTF as a zero-day. The root cause lies in TurboFan’s InferMapsUnsafe() function, which fails to handle aliasing when ...

World Liberty Financial, the decentralized finance (DeFi) protocol linked to the family of U.S. President Donald Trump, put a $5 million price tag on 'direct access' to team members in an almost ...

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...

A critical sandbox escape vulnerability has been disclosed in the popular vm2 Node.js library that, if successfully exploited, could allow attackers to run arbitrary code on the underlying operating ...

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system. The open-source ...

Pirtobrutinib Versus Ibrutinib in Treatment-Naïve and Relapsed/Refractory Chronic Lymphocytic Leukemia/Small Lymphocytic Lymphoma A total of 501 patients were included in the analysis: 287 received ...

Node.js has released updates to fix what it described as a critical security issue impacting "virtually every production Node.js app" that, if successfully exploited, could trigger a denial-of-service ...

The RondoDox botnet has been observed exploiting the critical React2Shell flaw (CVE-2025-55182) to infect vulnerable Next.js servers with malware and cryptominers. First documented by Fortinet in July ...

Ethereum developers earlier this month agreed on the name and rough timing of the network’s second major upgrade scheduled for 2026, settling on “Hegota” as the next milestone in the blockchain’s ...