Hackers demand payment for stolen data tied to heart monitoring company iRhythm

Preview this article 1 min Hackers used "social engineering," a multiple-step technique hackers sometimes use to trick people ...
The Hacker News

Popular WordPress Plugin Scripts Tampered to Plant Hidden Backdoors on Sites

Tampered JavaScript in three Awesome Motive plugins exposed WordPress sites to rogue admin accounts and hidden backdoors.
The Hacker News

145 Mastra npm Packages Compromised via Hijacked Contributor Account

Mastra npm packages added easy-day-js malware, exposing developer systems and CI runners to infostealer risks.

Cybersecurity attackers don’t hack in anymore… they get invited in

"In cybersecurity in 2026, the attackers have stopped breaking down doors. They are being invited in. And the front door they ...
MIT Technology Review

The Meta hack shows there’s more to AI security than Mythos

Gong and other scholars have been issuing warnings about the security vulnerabilities of AI agents for a while. They publish ...

Ableton is letting musicians build browser-style extensions for Live

The company provides a handful of example extensions that include the ability to bulk rename tracks, sketch out song arrangements, and slice up samples. The idea is that extensions can simplify ...
TechCrunch

Hackers hijacked Instagram accounts by tricking Meta AI support chatbot into granting access

Instagram has resolved a security issue that allowed several users’ accounts to get hacked. The attack appeared to rely on tricking Meta’s own AI-powered support chatbot into granting access to a ...
Yahoo

‘PTO-maxxing’ is the summer hack turning 15 vacation days into 49 days off

Add Yahoo as a preferred source to see more of our stories on Google. American workers are PTO maxxing to get the most out of their few vacation days each year. (Getty Images) For years, American ...
SecurityWeek

GitHub Confirms Hack Impacting 3,800 Internal Repositories

The TeamPCP hacking group accessed the repositories after a GitHub employee installed a poisoned VS Code extension. Microsoft-owned code-hosting platform GitHub on Wednesday morning confirmed that ...