The Hacker News

Claude Extension Flaw Enabled Zero-Click XSS Prompt Injection via Any Website

Claude extension flaw enabled silent prompt injection via XSS and weak allowlist, risking data theft and impersonation until ...

A major hacking tool has leaked online, putting millions of iPhones at risk. Here’s what you need to know

Here’s what we know, and what you need to know, about Coruna and DarkSword, two advanced iPhone hacking tools discovered by ...

Emails show tension between Rays, Tampa Sports Authority over parking

Parking has become a sticking point of negotiations for a new Tampa Bay Rays stadium, emails obtained by the Tampa Bay ...

Happy New Year! BPIB's preview of 2026 Cardinals comes out of left field

What do the roster decisions made by the Cardinals ahead of opening day tell fans about their timetable to contend? Probably ...
SecurityWeek

Russian APT Exploits Zimbra Vulnerability Against Ukraine

Russia-linked APT28 has exploited a high-severity XSS vulnerability in Zimbra in attacks against Ukrainian entities.

Takeda launches restructuring plan targeting $1.25B in savings

Preview this article 1 min Takeda Pharmaceuticals is moving ahead with a new wave of restructuring that will include layoffs.
The Hacker News

CISA Warns of Zimbra, SharePoint Flaw Exploits; Cisco Zero-Day Hit in Ransomware Attacks

Interlock exploits CVE-2026-20131 zero-day since Jan 26, enabling root access on Cisco FMC, increasing ransomware risks.

CISA orders feds to patch Zimbra XSS flaw exploited in attacks

CISA has ordered U.S. government agencies to secure their servers against an actively exploited vulnerability in the Zimbra ...
The Register-Herald

BBB warns consumers about email phishing scams targeting account information

The Better Business Bureau is warning consumers to be cautious of email scams in which fraudsters pose as legitimate ...
The Register-Herald

Transportation gaps persist as W.Va. fails to expand public transit funding

This story was originally published by Mountain State Spotlight. Get stories like this delivered to your email inbox once a ...

Someone has publicly leaked an exploit kit that can hack millions of iPhones

Leaked "DarkSword" exploits published to GitHub allow hackers and cybercriminals to target iPhone users running old versions ...
The Caledonian-Record

IRONSCALES Announces New Email Attack of the Day Intelligence Series, Demos Groundbreaking Email Agents at RSAC 2026

IRONSCALES, the AI-powered email security platform protecting 17,000+ global organizations, announced today at RSA Conference 2026 the launch of their new Email Attack of the Day intelligence series.