The Hacker News

⚡ Weekly Recap: IoT Exploits, Wallet Breaches, Rogue Extensions, AI Abuse & More

First 2026 cyber recap covering IoT exploits, wallet breaches, malicious extensions, phishing, malware, and early AI abuse.
Los Angeles Times

Native people refuse to be erased from America’s past, present or future

This is read by an automated voice. Please report any issues or inconsistencies here. President Trump seems determined to transform America into a straight white Christian nation. He filters our ...
Smithsonian Magazine

How Native Americans Are Celebrating the Holiday Season With Festive Meals, Public Service and Cherished Traditions

The winter holidays and especially Christmas have different meanings to tribes and Native individuals across Indian Country as they commune with friends and family Dennis Zotigh Beckham Barehand (Dine ...
CBS News

Dozens of Native Americans report being questioned or detained by ICE

As President Donald Trump's immigration crackdown continues, one community says they've felt unfairly targeted. This year, the Navajo Nation said dozens of Native Americans have been questioned or ...
CoinDesk

New React bug that can drain all your tokens is impacting 'thousands of' websites

A critical vulnerability in React Server Components is being actively exploited by multiple threat groups, putting thousands of websites — including crypto platforms — at immediate risk with users ...
PBS

Why Native Americans are facing high rates of mental decline

It’s estimated that around 7 million Americans have Alzheimer’s disease, a number that’s expected to double by 2060. But researchers have found that some of the highest rates of cognitive impairment ...
Bleeping Computer

Cloudflare blames today's outage on React2Shell mitigations

Earlier today, Cloudflare experienced a widespread outage that caused websites and online platforms worldwide to go down, returning a "500 Internal Server Error" message. The internet infrastructure ...
Network World

Cloudflare firewall reacts badly to React exploit mitigation

Cloudflare’s network suffered a brief but widespread outage Friday, after an update to its Web Application Firewall to mitigate a vulnerability in React Server Components went wrong. At 9:09 a.m. UTC, ...
Infosecurity-magazine.com

React.js Hit by Maximum-Severity 'React2Shell' Vulnerability

A critical remote code execution vulnerability in React.js has been identified. React.js is a JavaScript library for building fast, interactive user interfaces (UIs) using reusable components. The ...
TechSpot

Critical vulnerability in React JS framework has a near 100% chance to be exploited

Facepalm: A widely used web technology is affected by a serious security vulnerability that can be exploited with minimal effort to compromise servers. Known as "React2Shell," the flaw may require ...
Bleeping Computer

Critical React, Next.js flaw lets hackers execute code on servers

A maximum severity vulnerability, dubbed 'React2Shell', in the React Server Components (RSC) 'Flight' protocol allows remote code execution without authentication in React and Next.js applications.