The Hacker News

Claude Extension Flaw Enabled Zero-Click XSS Prompt Injection via Any Website

Claude extension flaw enabled silent prompt injection via XSS and weak allowlist, risking data theft and impersonation until ...

A major hacking tool has leaked online, putting millions of iPhones at risk. Here’s what you need to know

Here’s what we know, and what you need to know, about Coruna and DarkSword, two advanced iPhone hacking tools discovered by ...

St. Louis plumbing firms push for code changes as labor shortage strains residential service

St. Louis County rules involving plumbers are too strict, some say, especially as the retirement rate continues to tick up ...
The Hacker News

WebRTC Skimmer Bypasses CSP to Steal Payment Data from E-Commerce Sites

WebRTC skimmer exploits PolyShell flaw since March 19, hitting 56.7% stores, enabling stealth data theft bypassing CSP.

Bubble AI app builder abused to steal Microsoft account credentials

Threat actors are evading phishing detection in campaigns targeting Microsoft accounts by abusing the no-code app-building ...

Pittsburgh AI startups talk about their approach to using data centers

Pittsburgh AI startups Gather AI, Shelfmark and Profitmind navigate shifting data center needs as they balance cloud costs, ...
CSO Online

GitHub phishers use fake OpenClaw tokens to drain crypto wallets

Attackers exploit OpenClaw hype with fake “CLAW” airdrops, luring developers from GitHub into wallet-draining phishing sites.

Huge numbers of web stores are facing attack from this dangerous new malware

PolyShell vulnerability in Magento/Adobe Commerce mass exploited, hitting over half of vulnerable stores Attackers deploy ...

PolyShell attacks target 56% of all vulnerable Magento stores

Attacks leveraging the 'PolyShell' vulnerability in version 2 of Magento Open Source and Adobe Commerce installations are ...
Crypto Briefing

Amjad Masad: AI is democratizing tech, non-coders are gaining an edge in entrepreneurship, and idea generation is the new core skill | AI + a16z

Amjad Masad is the CEO and co-founder of Replit, a browser-based platform that has grown to generate $250 million in annual ...

Woman-hating teen shared murder plans on Discord before killing mum

Tristan Roberts, from Prestatyn, Denbighshire, waited until he was 18 to buy the weapons he would use to murder his mother, ...