The Hacker News

New Chrome Vulnerability Let Malicious Extensions Escalate Privileges via Gemini Panel

Chrome CVE-2026-0628 let malicious extensions hijack Gemini panel for privilege escalation, local file access, and ...

Until last month, attackers could've stolen info from Perplexity Comet users just by sending a calendar invite

AI browsing agent left local files open for the taking If you wanted to steal local files from someone using Perplexity's ...
Microsoft

Inside Tycoon2FA: How a leading AiTM phishing kit operated at scale

Tycoon2FA has become a leading phishing-as-a-service (PhaaS) platforms, enabling campaigns that reach over 500,000 organizations monthly, prompting Microsoft’s Digital Crimes Unit (DCU) to work with ...

Pencil.dev Merges Visual Design and Code Output into One Responsive Workflow

Pencil.dev focuses on design-to-code speed versus static tools; upcoming reusable component libraries are planned for 2026.
The Hacker News

Europol-Led Operation Takes Down Tycoon 2FA Phishing-as-a-Service Linked to 64,000 Attacks

Authorities dismantle Tycoon 2FA phishing service linked to 64,000 attacks, millions of emails, and breaches at nearly ...

OpenClawd Releases Major Platform Update as OpenClaw Surpasses React With 250,000 GitHub Stars

The Clawdbot AI Assistant Now Has More GitHub Stars Than React. OpenClawd Wants to Make Sure You Can Actually Run It. NEW ...

Chrome Extension Hijacked to Deliver Malware, Steal Crypto Wallets

A compromised Chrome extension with 7,000 users was updated to deploy malware, strip security headers, and steal cryptocurrency wallet seed phrases.

WinUIpad: AI to the Rescue ⭐

With progress slowing to a crawl, I researched Windows App SDK alternatives and then started experimenting with AI pair programming.
The News International

Thousands of Google accounts could be misused by hackers: Report

Thousands of Google Cloud API keys available online may have given unauthorised access to sensitive Gemini AI endpoints, ...

Software Development: Abstraction is Overrated

Abstraction is considered a virtue in software development. However, practice shows that wrong abstractions cause more harm ...

Four areas likely to attract tax audits as CRA scrutiny ramps up

The real estate sector has long attracted the CRA’s scrutiny, but short-term rentals, in particular, are likely to be in the ...