Linux kernel flaw opens root-only files to unprivileged users

Another Linux kernel flaw has handed local unprivileged users a way to peek at files they should never be able to read, ...
The Hacker News

Laravel-Lang PHP Packages Compromised to Deliver Cross-Platform Credential Stealer

Laravel-Lang compromise tagged 700+ versions on May 22–23, 2026, triggering PHP stealers that exfiltrate credentials.
Microsoft

From edge appliance to enterprise compromise: Multi-stage Linux intrusion via F5 and Confluence

A multi-stage attack on Linux devices began with an exposed F5 BIG-IP edge appliance and pivoted to an internal Confluence ...

The things we’re building

“I built Newslog. It bundles your newsletters, RSS feeds, and articles into a single daily digest with an index and summaries ...

AIXHost.exe error The application is exiting and cannot service this request

To fix the AIXHost.exe error "The application is exiting and cannot service this request", disable Windows Search, reset the ...

Chinese hackers target telcos with new Linux, Windows malware

A Chinese cyber-espionage campaign has been targeting telecommunications providers with newly discovered Linux and Windows ...
SecurityWeek

Legacy Windows Tool MSHTA Fuels Surge in Silent Malware Attacks

Attackers are increasingly abusing Microsoft’s legacy MSHTA utility to silently deliver malware, stealers, and persistent ...
PC World

I used AI to fix my biggest Windows 11 annoyances in minutes

PCWorld demonstrates how AI tools like ChatGPT can generate AutoHotkey v2 scripts to customize Windows 11, making automation accessible without coding knowledge. The author successfully created a ...
WeLiveSecurity

Webworm: New burrowing techniques

EchoCreep, which uses Discord for C&C communication, and GraphWorm, which uses Microsoft Graph API for the same purpose. The ...
The Hacker News

⚡ Weekly Recap: Linux Rootkit, macOS Crypto Stealer, WebSocket Skimmers and More

Weekly cybersecurity recap covering zero-days, malware, phishing, supply chain attacks, cloud threats, AI security risks, and latest cybercrime trends ...
Gizmodo

The Opening Script Pages of ‘Spider-Man: Brand New Day’ Are Now Online

In a fun little piece of marketing, Tom Holland, Zendaya, and director Destin Daniel Cretton add notes to the pages. Reading time 2 minutes We’re just about three months out from Spider-Man’s highly ...

Ars Asks: Share your shell and show us your tricked-out terminals!

Exposure therapy to the bash shell brought me to the tipping point, and I jumped ship to the Macintosh side of the house. It was a move calculated to give me the best of all possible worlds—a good ...