The Hacker News

New FROST Attack Lets Websites Track What Sites and Apps You Open via SSD Timing

FROST uses JavaScript and OPFS SSD timing to identify websites at 88.95% F1, exposing cross-browser privacy leaks.

The ‘Miasma’ worm source code briefly leaked on GitHub

The Miasma credential-stealing attack framework, which has recently targeted open-source ecosystems through supply-chain ...

New Shai-Hulud attack trojanizes 19 science-focused PyPI packages

Hackers compromised 19 packages on the PyPI, collectively downloaded hundreds of thousands of times, in a new Shai-Hulud ...

DocLang aims to make documents readable by AI, not humans

Its launch raises the question of what impact a new format will have on human workers, as well as on governance and ...
SecurityWeek

Over 100 NPM, PyPI Packages Hit in New Shai-Hulud Supply Chain Attacks

Over 100 NPM and PyPI packages were injected with malicious code in the Miasma and Hades Shai-Hulud supply chain attack ...
The Hacker News

Hacking Salesforce Sites With an LLM Agent

AI agent exploited Salesforce sites; 263 objects, 55 Apex methods exposed at one portal, leading to PII and file leaks.
Windows Latest

Apple just copied one of Microsoft Edge’s best features and called it Apple Intelligence

While Safari's new AI tab organizer is praised as an Apple Intelligence breakthrough, Microsoft Edge launched a better ...
Indianapolis Business Journal

Illinois governor opens door to new Bears talks, blames team for stadium stumbles

Pritzker stopped short of taking personal responsibility for not getting a deal over the goal line in Springfield, but he ...
Opinion
HackadayOpinion

This Week In Security: Messing With AI, 7Zip And Notepad++ Vulnerabilities, HTTP2 Bomb, And More

With the rise of AI coding assistants continuing apparently unabated, some project maintainers have begun striking back. Ars Technica reports on projects putting hostile directions into the ...
Indianapolis Business Journal

Veterans Park in Carmel aims to be more than just a memorial

Carmel officials and military veterans are hopeful a new 1.6-acre park will help bring the community closer to its armed ...

Security News This Week: Crypto-Funded Chinese Peptide Labs Are Booming

Plus: Hackers use Meta’s AI bots to hack Instagram accounts, Anthropic helps NSA hackers, a decades-long GPS satellite ...

Former Prince Andrew made money subletting cottages on his rent-free estate, report shows

A report by Britain's public spending watchdog shows that the former Prince Andrew made money by subletting cottages on the ...