The Hacker News

⚡ Weekly Recap: Qualcomm 0-Day, iOS Exploit Chains, AirSnitch Attack & Vibe-Coded Malware

Your weekly cybersecurity roundup covering the latest threats, exploits, vulnerabilities, and security news you need to know.
Security Boulevard

CVE-2026-27739: Angular SSR Request Vulnerability Enabling Server-Side Request Forgery

Learn how CVE-2026-27739 in Angular SSR enables SSRF through manipulated request headers & how to mitigate the risk with proper validation and security controls. The post CVE-2026-27739: Angular SSR ...
Bleeping Computer

New ClickFix attack abuses nslookup to retrieve PowerShell payload via DNS

Threat actors are now abusing DNS queries as part of ClickFix social engineering attacks to deliver malware, making this the first known use of DNS as a channel in these campaigns. ClickFix attacks ...
The New York Times

Why the Guthrie Doorbell Footage Took More Than a Week to Retrieve

Video from a camera sold by Google probably sat in one of its vast data centers. Nancy Guthrie did not have a subscription that would have allowed easy access. By Jacey Fortin Doorbell camera footage ...
The Hindu

Madras High Court to use AI to retrieve information from voluminous documents

Justice N. Anand Venkatesh has zeroed in on the algorithm Superlaw Courts, with the concurrence of the counsel representing both parties, after its working method was demonstrated in the court. The ...
GitHub

nasrealam/tradexa-angular-assignment

This is a complete Angular application that fetches posts from the JSONPlaceholder API and displays them in a tabular format. Users can add new posts through a form, which sends POST requests to the ...
CNBC

I scored a free $25 gift card simply by scanning receipts — here’s how

Terms apply to American Express benefits and offers. Visit americanexpress.com to learn more. You may want to think twice before throwing out your next receipt. With the Fetch app, you can turn any ...
Pew Research Center

Americans’ Social Media Use 2025

To better understand which social media platforms Americans use, Pew Research Center surveyed 5,022 U.S. adults from Feb. 5 to June 18, 2025. SSRS conducted this National Public Opinion Reference ...
Searchenginejournal.com

Chrome To Warn Users Before Loading HTTP Sites Starting Next Year

Google Chrome will enable "Always Use Secure Connections" by default in October 2026. Chrome will show warnings before accessing public HTTP sites Private sites like local IP addresses and intranet ...
CoinTelegraph

Fetch.ai offers to drop lawsuit if Ocean Protocol returns 286M FET tokens

The FET token’s price fell by over 93% since the merger of the Artificial Superintelligence Alliance, a drop that is unrelated to Ocean Protocol’s actions, according to its founder. Update Oct. 24, ...
CNN

Exhausted? The reason may be how you’re using technology

Kara Alaimo is a professor of communication at Fairleigh Dickinson University. Her book “Over the Influence: Why Social Media Is Toxic for Women and Girls — And How We Can Take It Back” was published ...
Bleeping Computer

NPM package caught using QR Code to fetch cookie-stealing malware

Newly discovered npm package 'fezbox' employs QR codes to retrieve cookie-stealing malware from the threat actor's server. The package, masquerading as a utility library, leverages this innovative ...