The Hacker News

AutoJack Attack Lets One Web Page Hijack AI Agent for Host Code Execution

Microsoft details AutoJack exploit chain targeting AutoGen Studio MCP WebSocket in pre-release builds, enabling ...
latesthackingnews.com

CVE-2026-48907: How the Joomla JCE Exploit Works and What to Do About It

CVE-2026-48907 in the Joomla JCE plugin lets unauthenticated attackers drop PHP web shells with a single crafted request.
CBS News

The government's UFO files are being released. We asked scientists what they think we'll learn.

Graham Kates is an investigative reporter covering criminal justice, privacy issues and information security for CBS News Digital. Contact Graham at [email protected] or [email protected] ...
GitHub

TypeScript Remove (tsr) is a utility that removes unused code from TypeScript projects – It's like tree shaking, but for source files

tsr statically analyses your TypeScript project like how tree-shaking is implemented in bundlers. Run tsr to get a list of unused exports and files (modules) in your TypeScript project. Use tsr in ...
law.nyu.edu

Family Defense Clinic files landmark class action over unlawful child removals

A coalition of legal advocates, including NYU Law's Family Defense Clinic filed a major class action against New York City’s Administration for Children's Services (ACS) on Thursday, May 28, ...
CBS News

Pentagon releases more UFO files: "Speechless after these observations"

Washington — The Pentagon on Friday released a new batch of 64 files related to UFOs, or UAPs, unveiling a second tranche of records that includes a 2025 first-hand account from an intelligence ...