The Hacker News

Ghost CMS CVE-2026-26980 Exploited to Hijack 700+ Sites for ClickFix Attacks

Ghost CMS flaw CVE-2026-26980 enabled attacks on 700+ sites, injecting ClickFix malware through fake CAPTCHA pages.
Tech Times

Ghost CMS SQL Injection Hits 700 Sites: Harvard, DuckDuckGo Serve Fake Cloudflare Malware

Ghost CMS SQL injection campaign has compromised 700+ websites — including Harvard University, Oxford University, and DuckDuckGo — using a CVSS 9.4 flaw to inject ClickFix malware lures that trick ...

Justice Department Removes News Releases on Jan. 6 Prosecutions From Website: ‘Partisan Propaganda’

The DOJ characterized the deleted releases as "partisan propaganda." ...

‘Clean’ swimmer wins gold in 50m backstroke at Enhanced Games

A ‘clean’ swimmer took home gold at the Enhanced Games, beating out his ‘enhanced’ competitors. The games, which took place ...