The Hacker News

⚡ Weekly Recap: Chrome 0-Day, UniFi Exploits, macOS Stealers, VPN Flaw and More

This week’s recap covers exploited flaws, supply chain attacks, phishing kits, AI lures, macOS stealers, urgent CVEs, tools, ...
The Hacker News

Popular WordPress Plugin Scripts Tampered to Plant Hidden Backdoors on Sites

Tampered JavaScript in three Awesome Motive plugins exposed WordPress sites to rogue admin accounts and hidden backdoors.

Cybersecurity attackers don’t hack in anymore… they get invited in

"In cybersecurity in 2026, the attackers have stopped breaking down doors. They are being invited in. And the front door they ...

Nisarga Adhikary, a 19-year-old ethical hacker who exposed CBSE portal security flaws, gets a job at IIT Kanpur

Nineteen-year-old ethical hacker Nisarga Adhikary, who recently highlighted security flaws in CBSE's digital infrastructure, has been appointed as an OSINT and Threat Intelligence Engineer at IIT ...
GhanaWeb - Ghana HomePage

Chrome zero-day flaw: Update now or risk hackers stealing your data

Google just patched a dangerous Chrome zero-day flaw already being exploited by hackers. Here's what Ghanaian users need to ...
Pharos-Tribune

Convicted hacker warns against trusting money to online platforms

LEBANON — Computer hacker Evan Light has advice for cryptocurrency investors. “The best tip I could possibly give for ...
The Shillong Times

Found CBSE portal vulnerabilities in 20 minutes, not afraid of FIR: Teen ethical hacker Nisarga Adhikary

Nineteen-year-old ethical hacker Nisarga Adhikary on Saturday spoke exclusively to IANS and alleged flaws in the CBSE portal, saying that it took him just 20 minutes to identify vulnerabilities. This ...

Ableton is letting musicians build browser-style extensions for Live

The company provides a handful of example extensions that include the ability to bulk rename tracks, sketch out song ...
NDTV

CBSE Denies OSM Breach Claim; 19-Year-Old Hacker Shares 'Video Evidence' Of Vulnerability

The claims and counterclaims have not been independently verified. The Central Board of Secondary Education (CBSE) on Tuesday issued a detailed clarification on its official X handle after facing ...
TechCrunch

North Korean hackers blamed for hijacking popular Axios open source project to spread malware

A suspected North Korean hacker has hijacked and modified a popular open source software development tool to deliver malware that could put millions of developers at risk of being compromised. On ...
Nextgov

North Korea-linked hackers suspected in Axios open-source hijack, Google analysts say

“The full breadth of this incident is still unclear, but given the popularity of the compromised package, we expect it will have far reaching impacts,” a chief Google analyst said. North Korea-aligned ...
Mashable

iPhone exploit DarkSword has been released in the wild: How to protect yourself

iPhone users should be on alert: DarkSword spyware has been posted in the wild. Credit: Cheng Xin/Getty Images DarkSword, the web-based hacker tool that can be used to steal data from millions of ...