The Hacker News

Claude Code Security and Magecart: Getting the Threat Model Right

Magecart hides payload in favicon EXIF via third-party scripts, bypassing static analysis and stealing checkout data at ...

LeakNet ransomware uses ClickFix, Deno runtime in stealthy attacks

The LeakNet ransomware gang is now using the ClickFix technique for initial access into corporate environments and deploys a ...

Oracle unveils Project Detroit for faster Java interop with JavaScript and Python

JavaOne Oracle has shipped Java 26, a short-term release, and introduced Project Detroit, which promises faster interop between Java, JavaScript, and Python. Java 26 will be supported for just six ...

Amazon security boss says crims abused max-security Cisco firewall flaw weeks before disclosure

Ransomware criminals exploited CVE-2026-20131, a maximum-severity bug in Cisco Secure Firewall Management Center software, as ...

AI-generated Slopoly malware used in Interlock ransomware attack

A new malware strain dubbed Slopoly, likely created using generative AI tools, allowed a threat actor to remain on a compromised server for more than a week and steal data in an Interlock ransomware ...
The Hacker News

DRILLAPP Backdoor Targets Ukraine, Abuses Microsoft Edge Debugging for Stealth Espionage

DRILLAPP JavaScript backdoor targets Ukraine in Feb 2026, abusing Edge debugging features to spy via camera, microphone, and ...

New Mexico's film incentives help indie thriller crew turn Albuquerque into Sin City for SXSW premiere

The action thriller utilized 150 crew members and 17 principal cast members from New Mexico to replicate the texture of ...
Dark Reading

Meta, TikTok Steal Personal & Financial Info When Users Click Ads

Tracking pixels let social media companies spy on users even after they click over to advertiser sites, gleaning credit card ...
Arizona Daily Star

Experts: Arizona election records given to the FBI could be fatally flawed

Unlike in Fulton County, Georgia, where actual ballots were seized, a federal grand jury subpoenaed digital data related to a ...
QueertyOpinion

Why won’t TV just let older gay men have sexy screen time?

Yes, we’re seeing plenty of gay, male characters on TV these days, but they’re usually married with kids (see Modern Family ) ...
Security Boulevard

What the Recent PayPal Breach Says About Modern Web Risk

TL;DR A coding flaw in PayPal’s loan app went undetected for nearly six months, exposing sensitive customer data — not because prevention controls failed catastrophically, The post What the Recent ...