Royal Farms to open second Montgomery County store, with third location in the works

Royal Farms is expanding in Montgomery County — and next month will open its closest location to the District yet.
The Hacker News

Adobe Reader Zero-Day Exploited via Malicious PDFs Since December 2025

Adobe Reader zero-day exploited since Dec 2025 via malicious PDFs, enabling data theft and potential RCE, prompting urgent ...

Justin Timberlake's Bounty Club files permits ahead of opening

Highly anticipated Bounty Club is building all the necessities ahead of opening, according to a string of newly filed permits ...

Form 941 Filing for Q1 2026 Now Open: TaxZerone Reminds Employers to File Before the April 30 IRS Deadline

Employers can now file their Q1 2026 payroll tax returns with TaxZerone, a #1 IRS-Authorized E-File Provider, ensuring ...

Top open source AI platform Flowise hit by maximum-level security issue

Flowise AI platform carried CVSS-10 arbitrary code flaw Vulnerability in CustomMCP node exploited in the wild Up to 15,000 ...

Marvin Williams Files Petition Signatures for Ballot Access, Campaign Confident if there is Fair Process

Marvin Williams, USAF has officially filed petition signatures to secure placement on the Republican primary ballot in ...

Max severity Flowise RCE vulnerability now exploited in attacks

Hackers are exploiting a maximum-severity vulnerability, tracked as CVE-2025-59528, in the open-source platform Flowise for ...
InfoQ

Anthropic Accidentally Exposes Claude Code Source via npm Source Map File

Anthropic's Claude Code CLI had its full TypeScript source exposed after a source map file was accidentally included in ...

Advocacy groups file constitutional challenge of Ontario’s Special Economic Zones Act

Ontario legislation that allows for “special economic zones,” where all provincial laws can be suspended, gives Premier Doug ...
The Hacker News

Flowise AI Agent Builder Under Active CVSS 10.0 RCE Exploitation; 12,000+ Instances Exposed

CVE-2025-59528 exploited in Flowise for over six months across 12,000+ exposed instances, enabling full system compromise.
SecurityWeek

Critical Flowise Vulnerability in Attacker Crosshairs

Threat actors have started exploiting CVE-2025-59528, a critical Flowise vulnerability leading to remote code execution.
SecurityWeek

Guardarian Users Targeted With Malicious Strapi NPM Packages

A threat actor has used 36 malicious NPM packages posing as Strapi plugins to distribute malware targeting Redis, Docker, and ...