Avira antivirus allows code smuggling

Three high-risk security vulnerabilities in Avira antimalware software allow attackers to execute code with system privileges, among other things.
New York Post

Archaeologists unearth Viking-era ‘execution pit’ near university town, exposing brutal ancient violence

Students at a prestigious university in the United Kingdom recently unearthed a likely execution pit on the outskirts of town — dating back 1,200 years. The University of Cambridge announced the ...
Newsweek

Ilhan Omar’s Post on Trump and Execution Sparks Republican Outrage

Representative Ilhan Omar, a Minnesota Democrat, faced outrage and condemnation from MAGA influencers and Republicans after she made a post this week referencing President Donald Trump as the "leader ...
The Verge

Microsoft fixes Notepad flaw that could trick users into clicking malicious Markdown links

Bad actors could use the flaw to remotely load and execute malicious files on a victim’s computer. Bad actors could use the flaw to remotely load and execute malicious files on a victim’s computer. is ...
TechRepublic

10K Claude Desktop Users Exposed by Zero-Click Vulnerability

A newly disclosed flaw in Anthropic’s Claude Desktop Extensions shows how a routine productivity feature can enable zero-click system compromise. LayerX researchers found that a single malicious ...
CBS News

Alabama sets nitrogen gas execution date for man in 1991 killing, even though he didn't pull the trigger

Alabama has scheduled a March execution date for a man sentenced to death for a fatal shooting during a 1991 robbery even though he didn't pull the trigger. Gov. Kay Ivey on Thursday set a March 12 ...
Fox News

Illinois bar owner killed in 'execution-style' shooting, suspect with decades-long criminal record in custody

A suspect described as a "monster" was arrested following a manhunt for the killer of an Illinois bar owner who authorities say was murdered in an "execution-style" shooting Monday. Julius E. Burkes ...
TechRepublic

arbitrary code execution

Apple urges users to update after patching CVE-2026-20700, a zero-day flaw exploited in sophisticated targeted attacks across multiple devices. Google released a Chrome security update fixing two high ...
CSOonline

Critical RCE bugs expose the n8n automation platform to host‑level compromise

A JavaScript sandbox bug rated CVSS 9.9 enables attackers to bypass AST‑based protections, while a Python execution bypass affects internal‑mode deployments common in enterprise setups. Two critical ...
The Hacker News

Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution

A critical sandbox escape vulnerability has been disclosed in the popular vm2 Node.js library that, if successfully exploited, could allow attackers to run arbitrary code on the underlying operating ...
SiliconANGLE

Anthropic’s official Git MCP server hit by chained flaws that enable file access and code execution

Anthropic PBC’s official Git Model Context Protocol server has several security vulnerabilities that can lead to arbitrary file access and, in some scenarios, full remote code execution triggered ...