The Hacker News

Popular WordPress Plugin Scripts Tampered to Plant Hidden Backdoors on Sites

Tampered JavaScript in three Awesome Motive plugins exposed WordPress sites to rogue admin accounts and hidden backdoors.
Microsoft

Crypto Clipper uses Tor and worm-like propagation for persistence and control

Microsoft Threat Intelligence analyzed a cryptocurrency clipper campaign that combines clipboard theft, wallet replacement, ...
Telegraph HeraldOpinion

Farm & Food File: Good luck eating that cotton sandwich

The June World Agricultural Supply and Demand Estimates from USDA contains a paradox policymakers might want to note: ...
Tech Times

npm Supply Chain Attack: North Korea Backdoored 144 AI Packages in 88 Minutes

Mastra AI’s 144 JavaScript packages was executed in just 88 minutes by North Korea’s Sapphire Sleet hacking group, which ...
Microsoft

From package to postinstall payload: Inside the Mastra npm supply chain compromise by Sapphire Sleet

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend ...

Study reveals exploit that lets your browsing history be spied on using your SSD

You can minimize the degree to which your browser spies on you, but potential hackers can use your own SSD against you and ...

Fort Lauderdale electronics firm files Chapter 11 with $14M in debts

After posting $4 million in revenue in 2025, the company will explore a sale.

FBI warns Americans: How these fraud websites are stealing your money and data through fake logins and bypassing firewalls

The FBI has issued a stark warning about a sophisticated cyber threat using fake websites and login pages to steal your money ...
InfoWorld

10 tips for getting better R code from your AI coding agent

With the proper setup and guidance, you can have Claude Code, Codex, Posit Assistant, and other coding agents writing R code ...

State won't file charges against teacher accused of hitting student

Melanie Garcia, 21, was arrested May 15 accused of child abuse for an incident. A month later, prosecutors declined to file ...

Over 1 million WordPress sites at risk after popular plugins hacked

Three popular plugins served malicious JavaScript through a compromised CDN.

WordPress Plugins: Supply Chain Attack Puts 1.2 Million Sites at Risk

In a supply chain attack, attackers install backdoors through the WordPress plugins OptinMonster, TrustPulse, and PushEngage.