The Hacker News

Popular WordPress Plugin Scripts Tampered to Plant Hidden Backdoors on Sites

Tampered JavaScript in three Awesome Motive plugins exposed WordPress sites to rogue admin accounts and hidden backdoors.

FPJ Exclusive: Meet Nisarga, The 19-Year-Old Ethical Hacker Who Flagged Alleged CBSE Portal Issues In February 2026

Fresh concerns have emerged over CBSE’s online portal after a 19-year-old cybersecurity researcher alleged vulnerabilities ...
Microsoft

From package to postinstall payload: Inside the Mastra npm supply chain compromise by Sapphire Sleet

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend ...
Hindustan Times

Did 19-year-old Nisarga Adhikary hack CBSE OSM portal? Claims, counterclaims explained

While still in the midst of fury from students on the On Screen Marking (OSM) system for Class 12 board exams, the Central Board of Secondary Education (CBSE) found itself at the centre of another ...

AI agents need more than reasoning: they need to actually use the web

A company rolls out an AI customer service assistant. The model behind it is current and capable enough for the job. The assistant goes live. Within a week, support tickets are getting worse, not ...
Bleeping Computer

WP Maps Pro bug exploited to create admin accounts on WordPress sites

Hackers are targeting WordPress websites running a vulnerable version of the WP Maps Pro plugin, which allows creating rogue administrator accounts without authentication. The vulnerability, tracked ...
SF Weekly

How a San Francisco open-source project became the data layer for global AI

San Francisco's AI economy is mostly being defined by the companies spending the most. Foundation model labs raise billions, ...
Security Boulevard

When AI Agents Become Bots: A Field Report from the Authentication Layer

Security vendors and their customers have spent considerable time debating where to draw the line between “legitimate” AI agents and “malicious” bots. A 31-day campaign against a major consumer ...
Opinion
AlterNet on MSNOpinion

A small disclaimer exposes a secret Trump project run by Airbnb founder

A small disclaimer on a website just exposed a secret project with no reporting, oversight, transparency or accountability under the thumb of President Donald Trump's office. Audrey Henson, who ...