SecurityWeek

Chrome, Edge Extensions Caught Stealing ChatGPT Sessions

LayerX discovered 16 extensions in the Chrome Web Store and Microsoft Edge Add-ons marketplace that steal users’ ChatGPT ...

Critical sandbox escape flaw discovered in popular vm2 NodeJS library

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.

1Password's new anti-phishing feature targets your most inescapable vulnerability - here's how

Thanks to AI, phishing attacks are becoming more dangerous. The 1Password app and browser extension now offer an extra layer of protection against such attempts.