The Hacker News

Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens

Self-propagating npm worm steals tokens via postinstall hooks, impacting six packages and expanding supply chain attacks.
Lablab.ai

Perplexity Computer: Stop Prompting, Start Delegating

A practical guide to Perplexity Computer: multi-model orchestration, setup and credits, prompting for outcomes, workflows, ...

Why are top university websites serving porn? It comes down to shoddy housekeeping.

Finding hijacked subdomains is straightforward. People need only enter site: [university].edu “xxx” or site: [university].edu ...

Purple List 2026: NYU Black List-Inspired Unproduced Screenplays

Chloé Zhao and 'The President's Cake' filmmaker Hasan Hadi are among those whose works have been included in the selection of ...

Websites Selling Child Sex Abuse Doubled in 2025, Watchdog Says

The number of websites illegally selling access to child sex abuse images more than doubled last year, according to new ...
Security Boulevard

Attacking the MCP Trust Boundary

Every secure API draws a line between code and data. HTTP separates headers from bodies. SQL has prepared statements. Even email distinguishes the envelope from the message. The Model Context Protocol ...
NYU Tisch School of the Arts

NYU Tisch Grad Film Presents the 2026 Purple List

Inspired by the Hollywood Blacklist, thesis students Ash Bhalla and Shandor Garrison founded The Purple List in 2012, ...

How indirect prompt injection attacks on AI work - and 6 ways to shut them down

How indirect prompt injection attacks on AI work - and 6 ways to shut them down ...
Security Boulevard

SAML vs OIDC vs OAuth 2.0: 12 Differences Every B2B Engineering Team Should Know

Choosing between SAML, OIDC, and OAuth 2.0? Explore 12 critical differences to help your B2B engineering team select the right authentication protocol today.
PCMag

Is Incognito Enough? 6 Ways to Protect Your Privacy When Watching Porn Online

No, taping over your webcam isn't going to cut it. From VPNs to tracker blockers, here's how to stay safe online while ...

How to Unblock Pornhub in Australia (Works in 2026)

Launch the app and log in with your credentials. Pick a server in New Zealand, Canada, or the US — territories where Pornhub ...
XDA Developers on MSN

I keep finding vibe coded apps that leak user data, and I'm not even looking for it

Vibe coding platforms are powerful, but users often don't know what they created.