The Hacker News

âš¡ Weekly Recap: Chrome 0-Day, UniFi Exploits, macOS Stealers, VPN Flaw and More

This week’s recap covers exploited flaws, supply chain attacks, phishing kits, AI lures, macOS stealers, urgent CVEs, tools, ...
The Hacker News

GitHub to Disable npm Install Scripts by Default to Stop Supply Chain Attacks

npm 12 disables install scripts by default, requiring explicit approval to reduce dependency-based code execution risks.

WebMCP Can Be Used To Hijack AI Agents, Chrome Warns

Chrome's WebMCP guidance warns that AI agents can be manipulated through the tools they are built to trust.
PCMag

Your Phone Has a Hidden Defense Against Scam Texts—And It’s Probably Turned Off

Your phone comes with built-in spam text protection, but it might be turned off by default. I'll tell you how to change that ...
Tech Times

Google Kills uBlock Origin in Chrome June 30: Dynamic Filtering Ends, No Workaround Remains

Chrome 150 ships June 30 and deletes the last Manifest V2 override flag from Chromium’s codebase, permanently ending dynamic ...
PCMag

Sorry, No Pornhub Access in 24 States and 3 Countries. How to Watch Anyway

Aylo sites like Pornhub are blocked across the US, most recently in West Virginia, and overseas, in protest of ...
Dark Reading

Application Security

Application Security Copilot 'SearchLeak' Attack Allows 1-Click Data Theft The critical, three-stage attack is now patched, but it's part of a new group of AI prompt-injection issues that use hidden ...
Fair Observer

World News

In a world defined by polycrisis, leaders are trying to ...