news newest ask show jobs

Made with ♥ by @iamnishanth

Open Source @Github

Open in hackernews

Backdoor found in popular ecommerce components

https://sansec.io/research/license-backdoor

41•mooreds•19h ago

Comments

xiphias2•17h ago

These all look like some Adobe plugin (sold by Adobe store)

GenerocUsername•17h ago

Thanks. I was skimming article but it seemed like it was missing some critical context

blargthorwars•17h ago

A lot of latent payloads are going to be activated ASAP before automated AI detection becomes the norm. AI ain't perfect, but it's good at this sort of thing.

McGlockenshire•16h ago

> The $licenseFile can be controlled by the attacker using the adminUploadLicense function

This is just as likely to be an RCE as it is to be a backdoor. Calling `include` on a file the user can write to is just asking for it. This has been a known footgun for decades.

BoardsOfCanada•16h ago

The vendor responses seem pretty strange:

> Magesolution (MGS) did not respond, but the backdoored packages can still be downloaded from their site as of Apr 30th.

> Tigren denies to have been hacked, but the backdoored packages are still available on their site as of Apr 30th.

> Meetanshi claims that their software has not been tampered with, but confirmed that their server got hacked.

pixl97•14h ago

Not that strange, unless forced by law vendors will commonly deny all knowledge and responsibility.

Noise is Beautiful: Part 1: Procedural textures

http://liu.diva-portal.org/smash/record.jsf?pid=diva2%253A1954979&dswid=-5845

1•ibobev•43s ago•0 comments

Mipmap selection in too much detail

https://pema.dev/2025/05/09/mipmaps-too-much-detail/

1•ibobev•2m ago•0 comments

Importance-Sampled Filter-Adapted Spatio-Temporal Sampling

https://jcgt.org/published/0014/01/08/

1•ibobev•2m ago•0 comments

Practical Unix manuals with mdoc: structure, style, and composition

https://manpages.bsd.lv/

1•fanf2•3m ago•0 comments

US and China Slash Tariffs

https://www.theverge.com/news/664811/us-china-pause-tariffs-90-days

3•olyellybelly•5m ago•0 comments

Causal Inference for the Brave and True

https://matheusfacure.github.io/python-causality-handbook/landing-page.html

1•romain_g•6m ago•0 comments

Patela: A basement full of amnesic servers

https://osservatorionessuno.org/blog/2025/05/patela-a-basement-full-of-amnesic-servers/

1•todsacerdoti•8m ago•0 comments

Stop Solving Problems by Adding Processes

https://medium.com/@acmerfight/stop-solving-problems-by-adding-processes-17de3e07d84e

1•acmerfight•12m ago•1 comments

The Illusion of the Shortcut

https://substack.com/home/post/p-163132730

1•MitiaHiers•13m ago•0 comments

AI Labor: Why Tomorrow's Greatest Leaders Will Be Great Orchestrators

https://diamantinoalmeida.com/ai-labor-why-tomorrows-greatest-leaders-will-be-great-orchestrators/

1•MitiaHiers•15m ago•0 comments

Show HN: Mmorpg prototype inspired by World of Warcraft

https://github.com/nickyvanurk/everwilds

1•nickyvanurk•15m ago•0 comments

La Liga vs. Cloudflare war and what you can do about it

https://daniel.es/blog/cloudflare-vs-la-liga/

2•asp1•16m ago•0 comments

State of Web Dev AI 2025

https://2025.stateofai.dev/en-US

2•OriginalMrPink•18m ago•1 comments

GrapheneOS needs help from an Android OEM

https://grapheneos.social/@GrapheneOS/114461810550000936

3•fosslinux•18m ago•0 comments

PPTGame(Planet Party Time)：Free Cross-Platform Party Game

https://www.pptgame.com/

3•Go7hic•21m ago•2 comments

Show HN: I built ScoreMeIO to compare and rank any product

https://scoreme.io/

3•yevhenms•24m ago•0 comments

Ilya Sutskever research on dec, 2010

https://magazine.utoronto.ca/people/students/ilya-sutskever-google-phd-fellowship/

1•codeproject•26m ago•1 comments

Show HN: A 3D Hacker Typer Inspired by Hacker Movies of the Early 2000s

https://supahacker.app

1•jonaskaapa•26m ago•0 comments

Bitcoin's Future: Should It Ossify or Keep Evolving? [video]

https://www.youtube.com/watch?v=smix6H233S8

1•eddieoz•27m ago•0 comments

US-China Tariff Cuts

https://www.wsj.com/livecoverage/stock-market-today-tariffs-trade-war-05-12-2025

3•imaginaryunit01•31m ago•0 comments

Rodney Mullen Interview

https://blog.slamcity.com/rodney-mullen-interview/

1•sebg•32m ago•0 comments

Dead Man's Switch

https://www.cipherwill.com

1•EnthusiastShiv•37m ago•0 comments

Wagtail CMS received its first bogus CVE – CVE-2025-45388

https://wagtail.org/blog/cve-2025-45388/

3•theorangeone•41m ago•0 comments

Show HN: Turn Your LinkedIn into a Personal Website with AI

https://onli.bio/gen/ln

1•zinxor•47m ago•0 comments

Do AI Tools Equalize Programmer Skills or Amplify Existing Differences?

https://www.xfaang.com/blog/Do-AI-Tools-Equalize-Programmer-Skills-or-Amplify-Existing-Differences/536WdujboMZO2qvEo53cg8

1•piotrzientara•49m ago•0 comments

"World's First" 500Hz Gaming Monitor

https://www.neowin.net/news/samsung-launches-the-worlds-first-500hz-gaming-monitor/

4•bundie•51m ago•1 comments

US and China agree to lower tariff levels and 90-day pause

https://www.reuters.com/world/us-china-tariff-live-updates-bessent-greer-announce-details-constructive-geneva-2025-05-12/

4•suraci•51m ago•1 comments

Does the U.S. Overpay for Drugs?

https://twitter.com/cremieuxrecueil/status/1921730579675934991

1•MrBuddyCasino•51m ago•2 comments

Armbian Updates: OMV support, boot improvents, Rockchip optimizations

https://www.armbian.com/newsflash/armbian-updates-nas-support-lands-boot-systems-improve-and-rockchip-optimizations-arrive/

2•transpute•53m ago•0 comments

School Management Software in Dubai

1•Levontechno•59m ago•0 comments