ServiceNow, SAP considered 'resilient' in software, even as hyperscalers win: BNP

BNP Paribas flags cautious software spending: hyperscalers lead AI/cloud while SAP & ServiceNow look resilient.
The Hacker News

Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution

A critical vm2 Node.js vulnerability (CVE-2026-22709, CVSS 9.8) allows sandbox escape via Promise handler bypass.
CRN

CoreX Makes Big ServiceNow SPM Play With InSource Acquisition

CoreX, an elite ServiceNow channel partner, acquired fellow ServiceNow elite partner InSource in a bid to become the leading strategic portfolio management company.