The Hacker News

Ghost CMS CVE-2026-26980 Exploited to Hijack 700+ Sites for ClickFix Attacks

Ghost CMS flaw CVE-2026-26980 enabled attacks on 700+ sites, injecting ClickFix malware through fake CAPTCHA pages.

Ghost CMS SQL injection flaw exploited in large-scale ClickFix campaign

A large-scale campaign is exploiting a critical SQL injection vulnerability (CVE-2026-26980) in Ghost CMS to inject malicious ...

Over 200 Fake Android Apps Are Quietly Stealing Money From Phone Bills

Cybersecurity group Zimperium discovered a new malware scam that silently used nearly 250 Android apps to impersonate popular ...
Tech Times

WordPress 7.0 Ships AI Agent Infrastructure: API Key Theft Risk Surfaces on Launch Day

WordPress 7.0 “Armstrong,” released May 20, 2026, arrived without the real-time collaborative editing feature that had been ...
techtimes

Ghost CMS SQL Injection Hits 700 Sites: Harvard, DuckDuckGo Serve Fake Cloudflare Malware

An unpatched SQL injection vulnerability in the Ghost content management system has been weaponized in an active, large-scale cyberattack that has compromised more than 700 websites worldwide — ...

AI.cc Releases AI Translator API, Targeting Enterprises Replacing Legacy Translation Infrastructure

SINGAPORE, SINGAPORE, SINGAPORE, May 21, 2026 /EINPresswire.com/ -- New API delivers neural machine translation powered ...

‘TrapDoor’ malware targets crypto dev tools in supply chain attack

Developer platform Socket says a malware called TrapDoor is targeting crypto and AI developers across npm, PyPI and Crates, aiming to steal crypto wallet info and browser data.

WordPress 7.0 Launches With Native AI Integration

WordPress 7.0 arrives without real-time collaboration, but its native AI infrastructure was always going to be the defining ...
Crowdfund Insider

Malware : New ‘TrapDoor’ Supply Chain Attack Reportedly Targets Blockchain and Crypto Devs Across Multiple Ecosystems

The malware employs ecosystem-specific techniques for execution. On npm, many packages use post-install hooks to deploy a comprehensive JavaScript payload ...
The Caledonian-Record

FiscalNote Expands PolicyNote API, Adding Local Government Intelligence to Enterprise and AI Agent Workflows

FiscalNote Holdings, Inc. (OTC: NOTE), a global leader in AI-driven policy and regulatory intelligence, today announced the expansion of the PolicyNote API to include local policy data. Organizations ...

Anthropic Buys The SDK Pipeline OpenAI And Gemini Depend On

Anthropic acquired Stainless, the SDK compiler behind OpenAI, Gemini and Llama. The deal hands one AI lab structural leverage ...
The Caledonian-Record

APi Group Announces Participation in Upcoming Investor Conferences

APi Group Corporation (NYSE: APG) (“APi” or the “Company”) today announced that its senior leadership team will be participating in a fireside chat during the William Blair 46th Annual Growth Stock ...