The Hacker News

Packagist Supply Chain Attack Infects 8 Packages Using GitHub-Hosted Linux Malware

Packagist packages hid malicious package.json scripts, enabling Linux binary execution during installs and workflows.

Do fear the Reaper - stealer swipes macOS users' passwords, wallets, then backdoors them

A new infostealer variant targets macOS users by spoofing Apple, Microsoft, and Google and then then gets to work searching ...

Bellevue Arts Museum sells downtown building as new owner launches $60 million campaign

Preview this article 1 min Bellevue Arts Museum will continue operating as a venue-free institution under a new CEO. Business ...

In cleaning up an encampment, I discovered the passion of its unknown resident

The person who had lived here was here for the same reason I was. The same shared love of the creatures and nature ...
SecurityWeek

Legacy Windows Tool MSHTA Fuels Surge in Silent Malware Attacks

Attackers are increasingly abusing Microsoft’s legacy MSHTA utility to silently deliver malware, stealers, and persistent ...

Italy condemn Wales to another Six Nations Wooden Spoon

Wales suffer another Six Nations clean sweep after losing to Italy, a result which extends their winless run to a record nine ...
Tech Times

Exchange Server OWA Zero-Day CVE-2026-42897 Exploited With No Permanent Patch and New Mitigation Gaps

Microsoft confirmed on May 14 that CVE-2026-42897 — a cross-site scripting flaw in the Outlook Web Access component of Exchange Server 2016, 2019, and Subscription Edition — is under active ...
Queerty

Miles Gutierrez-Riley is a rising star who shows there’s “no right way or wrong way” to be queer

Following his breakout role in The Wilds, Miles Gutierrez-Riley appeared in a groundbreaking teen drama that was released ...

Microsoft Confirms Active 0-Day Exploit—Check Emergency Mitigation

Microsoft Exchange users are urged to mitigate a zero-day vulnerability that CISA has confirmed is under active exploitation.
Dark Reading

Microsoft Exchange Zero-Day Under Attack, No Patch Available

Microsoft on Thursday disclosed a zero-day vulnerability in Exchange that's under active exploitation, but four days later customers are still awaiting a patch. The zero-day, tracked as CVE-2026-42897 ...

AI agent successfully moves Adobe Lightroom to Linux

Claude Code has made the digital photo tool Adobe Lightroom functional on Linux. The project began with a very simple prompt.