KnowledgeDeliver flaw exploited as a zero-day to install web shells

Hackers exploited a critical zero-day vulnerability in a server running the KnowledgeDeliver learning management system (LMS) to deploy the Godzilla web shell.
The Hacker News

Ghost CMS CVE-2026-26980 Exploited to Hijack 700+ Sites for ClickFix Attacks

Ghost CMS flaw CVE-2026-26980 enabled attacks on 700+ sites, injecting ClickFix malware through fake CAPTCHA pages.
The Caledonian-Record

Advance Auto Parts Reports First Quarter 2026 Results; Reaffirms Full Year 2026 Guidance

Advance Auto Parts, Inc. (NYSE: AAP), a leading automotive aftermarket parts provider in North America, that serves both professional installer and do-it-yourself customers, announced its financial ...

Do fear the Reaper - stealer swipes macOS users' passwords, wallets, then backdoors them

A new infostealer variant targets macOS users by spoofing Apple, Microsoft, and Google and then then gets to work searching ...
The Caledonian-Record

National Floors Direct Outlines End-to-End Customer Process Serving Homeowners Across U.S ...

National Floors Direct, a direct-to-consumer flooring company serving homeowners across a broad footprint of U.S. markets, today detailed the end-to-end customer experience that defines its approach ...

AI agent successfully moves Adobe Lightroom to Linux

Claude Code has made the digital photo tool Adobe Lightroom functional on Linux. The project began with a very simple prompt.
MSN による配信

Windows faces fake update malware and Recall security flaw

Microsoft’s Windows platform is facing dual security concerns this week: a fake update scam delivering password-stealing malware and a proof-of-concept exploit undermining the revamped Windows Recall ...