The Hacker News

Ghost CMS CVE-2026-26980 Exploited to Hijack 700+ Sites for ClickFix Attacks

Ghost CMS flaw CVE-2026-26980 enabled attacks on 700+ sites, injecting ClickFix malware through fake CAPTCHA pages.
The Hacker News

Ghostwriter Targets Ukraine Government Entities with Prometheus Phishing Malware

Ghostwriter used Prometheus lures since spring 2026 to target Ukraine agencies, enabling malware delivery and data theft.

Protecting patients and visitors in hospitals: A strategic imperative for healthcare leaders

Hospitals exist to heal, yet today’s healthcare environments are increasingly complex, dynamic, and risk laden. Protecting ...
Design-Reuse

Embedded Security explained: Cryptographic Hash Functions

Cryptographic hash functions are a key building block in embedded security. They take input data of any size and convert it into a fixed-length value, called a hash or message digest. This hash acts ...
Hosted on MSN

Breaking down the security functions at the White House Correspondents' Dinner

CBS News analyst Aaron MacLean joins with his take on security measures at the White House Correspondents' Dinner, where a suspected gunman rushed the security perimeter and shots were fired. Diego ...
VentureBeat

The enforcement gap: 88% of enterprises reported AI agent security incidents last year

A rogue AI agent at Meta passed every identity check and still exposed sensitive data to unauthorized employees in March. Two weeks later, Mercor, a $10 billion AI startup, confirmed a supply-chain ...
USA Today

TSA weighs privatizing some airport screening functions to avoid delays

Further privatizing Transportation Security Administration screening functions could be a way to prevent travel disruptions in the future, TSA's deputy administrator suggested in a hearing before ...
The Conversation

How the National Security Council typically functions to plan and fully assess risks when presidents consider going to war

Three weeks into the U.S. war with Iran, it seems increasingly evident that President Donald Trump and his administration miscalculated how Iran would respond to attacks. The administration’s ...
CNN

Trump threatens to deploy ICE agents to airports Monday if funding deal isn’t reached

President Donald Trump said Saturday he will deploy Immigration and Customs Enforcement agents to US airports on Monday if an agreement isn’t reached to fund the Department of Homeland Security as ...
Homeland Security Today

Aviation Security Under Stress: Operational Risk at America’s Airports During Disruption

On any given morning at major U.S. airports, thousands of travelers move through security checkpoints staffed by Transportation Security Administration officers responsible for identifying threats in ...
Security

Why Executive Support for Security Stalls and How Leaders Can Break the Cycle

Sometimes, executive leadership mistakes a lack of serious incidents for a lack of serious security risks. Often, insistence or traditional “selling security” tactics, even when recommendations are ...
Bleeping Computer

Wikipedia hit by self-propagating JavaScript worm that vandalized pages

Update: Added Wikimedia Foundation's statement below and made a correction to denote it was only the Meta-Wiki that was vandalized. The Wikimedia Foundation suffered a security incident today after a ...