CSO Online

Critical bug in popular vm2 Node.js sandboxing library puts projects at risk

Sandbox escape vulnerability in vm2, used by nearly 900 NPM packages, allows attackers to bypass security protections and ...

Stellantis sells stake in Ontario battery plant to LG Energy Solution for $100 amid EV reset

Stellantis and LG had unveiled a major investment in a joint venture in Windsor, Ont., in 2022, part of the carmaker’s ...

Carney unveils hike to GST credit, other measures targeting affordability

Prime Minister Mark Carney announced a package of measures on Monday that his government says will help ease the ...
Opinion
Foreign AffairsOpinion

The Case for Upending World Trade

Over the course of a year, U.S. President Donald Trump’s administration has become the most disruptive force in global trade since the 1930s. But the destruction of the post–Cold War trade order—a ...
IFA Magazine

Red flags, green shoots, and a year of quiet tensions: Omni Invest’s Fabian Wiesner offers a pragmatic investment outlook

As 2026 unfolds, familiar investment risks are resurfacing, but with sharper edges. Interest rate expectations, AI’s evolving influence, and increasingly ...

What makes JFrog Ltd. (FROG) an investment choice?

Baron Funds, an investment management company, released its “Baron Discovery Fund” fourth-quarter 2025 investor letter. A ...
SecurityWeek

‘PackageGate’ Flaws Open JavaScript Ecosystem to Supply Chain Attacks

Vulnerabilities in the NPM, PNPM, VLT, and Bun package managers could lead to protection bypasses and arbitrary code ...
CSO Online

Shai-Hulud & Co.: The software supply chain as Achilles’ heel

The threat situation in the software supply chain is intensifying. Securing it belongs at the top of the CISO’s agenda.
Retail TouchPoints

2026 Predictions: The Promises (and Perils) of AI

We’ve held off on discussing AI as long as we could, but we’re only human. It was the topic of 2025 (not only in retail), and its impact on the industry’s ecosystem looks set to expand even further in ...

Malicious packages for dYdX cryptocurrency exchange empties user wallets

Open source packages published on the npm and PyPI repositories were laced with code that stole wallet credentials from dYdX ...

Movie Review: Jason Statham sticks close to the formula as a lethal former spy in ‘Shelter’

Jason Statham stars in “Shelter,” living in a Scottish lighthouse as a grim-faced hero laying low. He's a former MI6 ...