The Hacker News

IronWorm and New Miasma Worm Variant Hit npm in Supply Chain Attacks

Multiple npm supply chain attacks used 50+ poisoned packages to spread IronWorm, a Rust-based stealer, and a Miasma worm ...
InfoQ

Next.js 16.2: 400% Faster Dev Startup, Faster Rendering, and Deeper Tooling for AI Agents

Vercel has released Next.js 16.2, featuring performance enhancements that make development startup 400% faster and rendering ...
MIT Technology Review

The Download: Trump’s new AI order, and smart glasses for warfare

Plus: SpaceX plans to raise $75 billion in IPO at $135 per share. This is today's edition of The Download, our weekday ...
PCMag

Android 17 Beta 4.1 Is Now Live: Here's Every Feature You Can Test and Eligible Phones

Can't wait to try out Google's version of Handoff and revamped Android Auto? Here's how to get the latest Android 17 beta on ...

Here's everything new in June 2026 for the Google Play Store

Google Play Store v51.7 makes app deals easier to spot, streamlines installs for upcoming releases, and adds a cleaner ...

WP Maps Pro bug exploited to create admin accounts on WordPress sites

Hackers are targeting WordPress websites running a vulnerable version of the WP Maps Pro plugin, which allows creating rogue ...
Microsoft

Malicious npm packages abuse dependency confusion to profile developer environments

A dependency confusion campaign leveraged 33 malicious npm packages to collect reconnaissance data from developer and build environments. This report details the attack chain, observed tradecraft, and ...
The Caledonian-Record

Xfinity Ranked #1 Nationally in Consistent Quality, Download Speed, and Video Experience in New Opensignal Report

Xfinity has once again been recognized as a broadband leader in Opensignal’s latest U.S. Fixed Broadband Experience Report, ...
Microsoft

Typosquatted npm packages used to steal cloud and CI/CD secrets

Microsoft has identified an active supply chain attack targeting the npm package ecosystem. On May 28, 2026, a single threat actor operating under the newly created maintainer alias vpmdhaj (a39155771 ...
The Caledonian-Record

mimik Launches mimOE Studio to Accelerate Agentix-Native Systems with Sustainable Economics and Scalable Growth

OE™ Studio, the first Agentix-Native Workstation, powered by mimik’s mimOE, Agentix Operating Engine. Together they enable ...
Tech Times

Ghost CMS SQL Injection Hits 700 Sites: Harvard, DuckDuckGo Serve Fake Cloudflare Malware

Ghost CMS SQL injection campaign has compromised 700+ websites — including Harvard University, Oxford University, and DuckDuckGo — using a CVSS 9.4 flaw to inject ClickFix malware lures that trick ...