The Hacker News

Cohere AI Terrarium Sandbox Flaw Enables Root Code Execution, Container Escape

CVE-2026-5752 CVSS 9.3 flaw in Terrarium enables root code execution via Pyodide prototype traversal, risking container ...

Unauthorized group has gained access to Anthropic’s exclusive cyber tool Mythos, report claims

Anthropic told TechCrunch it is investigating the claims, but maintains that there is no evidence that its systems have been ...

How A Roblox Cheat Download Triggered A $2 Million Hack At Vercel

How A Roblox Cheat Triggered A $2 Million Breach At Vercel. Why The Vercel Incident Changes The Economics Of Enterprise AI ...

Facts behind claim CNN reported 62M men visited 'online rape academy'

Social media users shared misinformation referencing CNN's genuine investigative reporting about a dark corner of the ...
PCMagOpinion

Testing the Flipper Zero: From Unboxing to Hacking Just About Anything in Under 60 Minutes

It may look like a cute little dolphin-themed toy, but the Flipper Zero is a surprisingly powerful learning tool for hacking.

NGate Android malware uses HandyPay NFC app to steal card data

A new variant of the NGate malware that steals NFC payment data is targeting Android users by hiding in a trojanized version ...
Hackaday

This Week In Security: Docker Auth, Windows Tools, And A Very Full Patch Tuesday

CVE-2026-34040 lets attackers bypass some Docker authentication plugins by allowing an empty request body. Present since 2024, this bug was caused by a previous fix to the auth workflow. In the ...
Cybernews

Hackers dodging security tools by dropping secret QEMU virtual machines inside Windows

Hackers are dodging Windows security tools by running secret Linux virtual machines with QEMU, an open-source virtualizer.

Hackers used AI to steal hundreds of millions of Mexican government and private citizen records in one of the largest cybersecurity breaches ever

A group of hackers used both Claude Code and ChatGPT in a cybersecurity hack that lasted two and a half months.

Apple Tap-to-Pay Vulnerability Demonstrated on Video as YouTuber Steals $10,000 From a Locked iPhone

A YouTube channel collaborated with two cybersecurity experts to explain how Apple’s Tap-to-Pay vulnerability from 2021 can ...
eWeek

Siri Set to Debut Standalone Chat App in iOS 27

After years of watching ChatGPT and Gemini hog the limelight, Apple is reportedly shipping a standalone Siri app, codenamed ...

The invisible shield: How AI is quietly protecting the software that runs your life

Last week, something alarming happened in the world of software — and almost nobody outside the tech industry noticed. A ...