The Hacker News

Ghost CMS CVE-2026-26980 Exploited to Hijack 700+ Sites for ClickFix Attacks

Ghost CMS flaw CVE-2026-26980 enabled attacks on 700+ sites, injecting ClickFix malware through fake CAPTCHA pages.

Ghost CMS SQL injection flaw exploited in large-scale ClickFix campaign

A large-scale campaign is exploiting a critical SQL injection vulnerability (CVE-2026-26980) in Ghost CMS to inject malicious ...
Windows Latest

Microsoft wants devs to build Electron AI apps on Windows 11, says no need of native code, despite RAM concerns

Electron apps are ruining the Windows 11 experience, and even the JavaScript creator has warned against ‘rushed web UX over native,’ but it doesn’t look like that will change Microsoft’s plans. In a ...
GitHub

Electron on Windows Gallery

⚠️ Status: Public Preview - Electron on Windows Gallery is in public preview and in active development. It is not yet publishes to the Microsoft Store. We'd love your feedback! Share your thoughts by ...
Windows Latest

JavaScript creator warns against “rushed web UX over native” as Windows 11 leans harder on WebView2 and Electron

From Discord and Teams to WhatsApp, Windows Search, the Start menu, and even the new Agenda view in Notifications Center, Windows 11 keeps doubling down on web junk, and it’s getting so out of control ...
Ars Technica

In 1995, a Netscape employee wrote a hack in 10 days that now runs the Internet

Thirty years ago today, Netscape Communications and Sun Microsystems issued a joint press release announcing JavaScript, an object scripting language designed for creating interactive web applications ...
CIO

Seraphic Becomes the First and Only Secure Enterprise Browser Solution to Protect Electron-Based Applications

Seraphic, the leader in enterprise browser security (SEB) and AI enablement, today announced native protection for Electron-based applications such as ChatGPT desktop, Teams, Slack, and more, becoming ...
The Business Journals

First look: Tokyo Electron's training and research facility in Austin

To continue reading this content, please enable JavaScript in your browser settings and refresh this page. Preview this article 1 min The training facility, which ...
Bleeping Computer

Cursor, Windsurf IDEs riddled with 94+ n-day Chromium vulnerabilities

The latest releases of Cursor and Windsurf integrated development environments are vulnerable to more than 94 known and patched security issues in the Chromium browser and the V8 JavaScript engine. An ...
GitHub

‍♂️ Loki Command & Control

Loki is a stage-1 command and control (C2) framework written in Node.js, built to script-jack vulnerable Electron apps MITRE ATT&CK T1218.015. Developed for red team operations, Loki enables evasion ...
Hosted on MSN

How Electron JS Works (100 Second Guide)

Electron JS lets you build native desktop apps for MacOS, Windows, and Linux using JavaScript, HTML, and CSS. In this quick guide, you’ll learn how Electron works and how to set up your first app—all ...