The Wire
Curated cybersecurity and tech news — AI-summarized, source attributed.
Permacomputing: 10 Principles for Sustainable, Resilient Digital Practice
Permacomputing borrows from permaculture's ethics of Earth Care, People Care, and Fair Share, translating them into ten design principles aimed at reducing the
Rowhammer Jumps to NVIDIA GPUs, Yielding Full Host Compromise
Three independent research teams have demonstrated Rowhammer attacks against NVIDIA Ampere GPUs that escalate from GDDR memory bitflips to full control of the h
SpaceX dials back Falcon 9 cadence as Starship takes over the manifest
SpaceX's Falcon 9 launch rate is starting to ease off after years of relentless growth. The company flew 165 Falcon 9 missions in 2025, up from 134 in 2024 and
The Hacker News Opens Submissions for CyberStars Awards 2026
The Hacker News has launched the Cybersecurity Stars Awards 2026, a global recognition program aimed at surfacing the often-invisible work behind successful cyb
Three PyPI packages drop ZiChatBot malware that uses Zulip chat APIs as C2
Kaspersky uncovered three malicious PyPI packages — uuid32-utils, colorinal, and termncolor — uploaded in a one-week window in July 2025 and collectively pulled
TSMC locks in 30-year offshore wind deal as Taiwan's gas supply buckles
TSMC signed a 30-year power purchase agreement covering the entire output of Northland Power's Hai Long offshore wind project, more than 1 gigawatt across three
Twelve critical vm2 sandbox escapes expose Node.js hosts to RCE
Researchers disclosed twelve critical vulnerabilities in vm2, the popular Node.js library used to run untrusted JavaScript inside a proxied sandbox. Every flaw
Two Decades of Cyber: 20 Inflection Points From Stuxnet to ChatGPT
Dark Reading frames the modern cybersecurity era through 20 pivotal events, anchored at one end by Stuxnet's 2010 demonstration that code could physically destr
Valve drops Steam Controller CAD files under CC non-commercial license
Valve has published CAD files for its newly shipping Steam Controller and Puck, including .STP and .STL exports of the external shell plus engineering diagrams
vm2 sandbox escape via WebAssembly exception handling enables host RCE
CVE-2026-26956 lets attackers break out of vm2, a Node.js sandbox library pulling 1.3M weekly npm downloads, and execute arbitrary code on the host. The flaw hi
Willison: The line between vibe coding and agentic engineering is blurring
Simon Willison reflects on a shift in his own AI-assisted coding practice. He previously drew a sharp line between 'vibe coding' — accepting AI output without r
Windows Phone Link Abused to Siphon SMS and Defeat 2FA
Attackers are weaponizing Microsoft's Phone Link feature, the built-in Windows utility that pairs a PC with a mobile device for messaging and notifications, to