The Hacker News

FreePBX Patches Critical SQLi, File-Upload, and AUTHTYPE Bypass Flaws Enabling RCE

FreePBX patched 2025 flaws allowing SQL injection, file upload attacks, and an auth bypass only when webserver AUTHTYPE was ...

Notepad++ users urged to update immediately after hackers hijack the app's updater

The developers of Notepad++ recently discovered an actively exploited vulnerability that enabled hackers to hijack the popular editor's automatic updater. Version 8.8.9 addresses the issue, but ...
Opinion
Center for American ProgressOpinion

State and Local Policymakers Can Raise Standards and Build Power for Workers

States and cities can advance these 21 ideas in 2026 to build worker power, support unionized workers, and uphold workforce stability and standards.
The Hacker News

Fortinet, Ivanti, and SAP Issue Urgent Patches for Authentication and Code Execution Flaws

Vendors fix critical flaws across Fortinet, Ivanti, and SAP to prevent authentication bypass and remote code execution.