The Hacker News

cPanel CVE-2026-41940 Under Active Exploitation to Deploy Filemanager Backdoor

CVE-2026-41940 exploitation by 2,000 IPs enabled Filemanager backdoor attacks, causing credential theft and persistent access ...
SecurityWeek

TanStack, Mistral AI, UiPath Hit in Fresh Supply Chain Attack

Over 170 TanStack, Mistral AI, OpenSearch, UiPath, and other packages were affected in a new Mini Shai-Hulud supply chain ...
The Hacker News

Mini Shai-Hulud Worm Compromises TanStack, Mistral AI, Guardrails AI & More Packages

TeamPCP’s Mini Shai-Hulud campaign used hijacked GitHub OIDC tokens to spread a credential-stealing worm through TanStack npm ...
Decrypt

Fake OpenAI Repo Hit #1 on Hugging Face—And Stole Passwords While It Trended

A fake repo impersonating the OpenAI Privacy Filter model racked up 244,000 downloads in under 18 hours before Hugging Face ...

New WordPress Plugin: MUTE Spam Blocker Brings Zero-Code Contact Form Protection to Millions of WordPress Sites

The free plugin is now available on the WordPress Plugin Directory, compatible with Contact Form 7, WPForms, Ninja ...
The Caledonian-Record

Outdoor Recreation, Road Safety Efforts Advance In Bethlehem

As summer nears, one town that is becoming increasingly popular for outdoor recreation is preparing to install added safety ...

Inside Austin Energy’s Resource, Generation and Climate Protection Plan: How new pilots become scalable clean energy solutions

How does a community‑owned utility scale renewable energy? Austin Energy’s new battery storage pilot shows the next step in ...

Apple Releases Safari Technology Preview 243 With Bug Fixes and Performance Improvements

Apple today released a new update for Safari Technology Preview, the experimental browser that was first introduced in March ...
The Caledonian-Record

Accused correspondents' dinner shooter pleads not guilty to all charges

The accused White House Correspondents' Association Dinner shooter pleaded not guilty in federal court on Monday to all ...
LGBTQ Nation

FaceTune says it “strongly supports the LGBTQIA+ community” amid transphobic ad debacle

FaceTune emphasized that the ad was created by a third party and that it was removed as soon as the team learned about it.

WordPress Loses Marketshare. Is Astro Eroding Their User Base?

WordPress is losing market share, and over 10% of its sites are abandoned. Astro is getting downloaded 2.5 million times per ...

'ClickFix' attack tricks users into hacking themselves, ACSC warns

ClickFix relies on tricking users into essentially hacking themselves by running commands that compromise their computers. In ...