The Hacker News

Ghostwriter Targets Ukrainian Government With Geofenced PDF Phishing, Cobalt Strike

Ghostwriter’s March 2026 Ukraine attacks use PDF lures and geofencing to deploy Cobalt Strike on government targets.

Instructure reaches 'agreement' with ShinyHunters to stop data leak

Instructure, the edtech giant behind the widely popular Canvas learning management system (LMS), has reached an "agreement" ...
The Manila Times

Belarus-aligned FrostyNeighbor attacks Ukrainian government, again - ESET Research discovers

FrostyNeighbor, a long-running cyberespionage actor apparently aligned with the interests of Belarus, has been active recently in campaigns targeting governmental organizations in Ukraine.This latest ...

Instructure confirms hackers used Canvas flaw to deface portals

Education technology giant Instructure has confirmed that a security vulnerability allowed hackers to modify Canvas login ...
Queerty

My husband posts “content” on Bluesky with my approval—but it’s gone too far. How do I tell him to stop?

My husband told me a while back that he wanted to post some mild photos of himself on Bluesky—shirtless, a little flirty, nothing too extreme. He’s always had a bit of an exhibitionist streak, and I’m ...
Ventureburn

MEXC Review May 2026: Is It A Safe Crypto Exchange?

MEXC Futures M-Day is a promotional futures event in which customers trade USDT-M or Coin-M futures for a chance to win ...

How to perform web scraping at scale

Web scraping is a process that extracts massive amounts of data from websites automatically, with a scraper collecting thousands of data points in a matter of seconds. It grabs the Hypertext Markup ...
SecurityWeek

TanStack, Mistral AI, UiPath Hit in Fresh Supply Chain Attack

Over 170 TanStack, Mistral AI, OpenSearch, UiPath, and other packages were affected in a new Mini Shai-Hulud supply chain ...

11 casseroles that made me stop stressing about weeknight dinners

Busy evenings feel a little easier with lovely casserole ideas that help cut down on stress and cleanup. A few of these are ...
Security Boulevard

Are Magic Links Secure: A Technical Deep Dive Into Email Based Authentication

Are magic links secure? A security analyst breaks down token entropy, replay protection, expiry, device binding, and email compromise risks for MojoAuth users.