The Hacker News

New FROST Attack Lets Websites Track What Sites and Apps You Open via SSD Timing

FROST uses JavaScript and OPFS SSD timing to identify websites at 88.95% F1, exposing cross-browser privacy leaks.

Websites have a new way to spy on visitors: Analyzing their SSD activity

Now sites have a new way to spy on their visitors: measuring subtle interactions with their solid-state drives. The technique, named FROST (fingerprinting remotely using OPFS-based SSD timing), allows ...

I let Claude audit my messy Home Assistant setup, and it was a massive wake-up call

I gave Claude access to my Home Assistant. It helped me audit, debug, and improve my smart home better than I ever could have ...
The Hacker News

Hades PyPI Attack: 19 Packages Poisoned to Auto-Run Bun Credential Stealer

The Miasma supply chain campaign has sparked a fresh attack wave called Hades, this time involving 37 malicious wheel ...
AARP

Medicare Trust Fund Still Faces Shortfall in 7 Years, 2026 Report Says

Reserves in the hospital trust fund, built up over decades, are forecast to be depleted in 2033 — but one quarter earlier ...

You're probably on your phone right now - and there's a good chance you don't really know why

If you've ever winced at your daily phone screen time, you might want to look away now.
Tech Times

npm v12 Security Overhaul Blocks Install Scripts by Default: July Deadline for CI Migration

July 2026, blocking install scripts, Git dependencies, and remote URL sources by default. Every team running npm install in ...

Even with a deal to reopen the Strait of Hormuz, it could take weeks or months for oil to fully flow

The tentative agreement to end the war in Iran and reopen the Strait of Hormuz would be good news for the global economy. But ...
SecurityWeek

OWASP Incubator Project Helps Developers Find and Fix Vulnerable Dependencies in Seconds

CVE Lite CLI helps developers quickly identify and fix vulnerable npm dependencies during development, reducing delays and ...

Severe rush hour disruption for Tube passengers as drivers strike for second time this week

Delays and suspensions are affecting 10 lines across the London Underground network as drivers hold another walkout following ...
AARP

Summer Preview: 32 of the Season’s Top New Books

Help Register Login Login Hi, %{firstName}% Hi, %{firstName}% Games Car rental Grab your beach chair or crank up the air-conditioning, and dive into a few (or all!) of these 32 fantastic new reads ...
Oneindia

‘Weak Defences’: Class 12 Ethical Hacker Claims It Took Only A Few Minutes To Hack CBSE OSM System

An independent researcher highlights potential security weaknesses in the CBSE On-Screen Marking portal, raising questions about login, OTP, and data integrity during results season.