$75,000,000 Crypto Wallet Bulk Hack. Since Joe Grand's first Trezor wallet hack, he's been flooded with people asking for help. So for the past three years, he's refined his method. Dozens of people, dozens of stories. MORE

Rez0's Top Claude Skill Secrets. Bug Bounty Podcast digs into how rez0 uses Claude for recon, code review, and finding vulnerabilities. Dense with practical techniques. MORE

AI-Found RCE in Storybook. Aikido's AI pentest tool discovered CVE-2026-27148, a WebSocket hijacking flaw in Storybook's dev server enabling persistent XSS and RCE. Proof that AI is surfacing critical vulns in everyday dev tools fast. MORE

Angular's Close Call with Supply Chain Compromise. A GitHub Actions cache poisoning misconfiguration in Angular's dev infra could have let an attacker compromise every Angular npm package. Discovered and disclosed in December 2025 before exploitation. MORE

The Repricing of Time. AI is collapsing competitive timelines from years to months, making traditional equity valuations based on stable franchises obsolete. Equity is becoming a short-duration call option on execution velocity. MORE

Zero-Click Account Takeover via MessagePort. Even with proper postMessage origin checks, MessagePort injection lets attackers hijack auth flows without a click. The exploit links malicious addons to victim workspaces, exposing PII and config data. MORE

Vibe-Coded App, Hacked in Days. Cloudflare built a Next.js replacement called vinext with AI in a week—then researchers broke it almost immediately. A sharp teardown of what happens when AI builds the security-critical path. MORE

OAuth Popup Hijacking via Predictable window.open. A hardcoded window.open() target name allowed attackers to intercept OAuth flows via iframe naming collisions, bypassing CSP. The successful exploit linked malicious addons to victim workspaces. MORE

Lupin (@0xLupin) announced they successfully raised $5.9M in pre-seed funding on March 17th, 2026. The cybersecurity community celebrated with congratulations from notable figures like John Hammond, STÖK, and zseano. MORE

Tidal now lets US artists sell music directly to fans without subscriptions. Just upload, set your price, and keep 90% of sales. The streaming platform is expanding globally with Square and Cash App integrations coming soon. MORE

What Breaks First When Your Team Hits 50. HN thread where engineering teams share what cracks when headcount grows from 10 to 50. Rarely technical—decisions slow, context collapses, and informal processes fail. MORE

The Friendship Recession. Men with zero close friends rose from 3% to 15% since 1990; those with six or more dropped from 55% to 27%. This data-driven site explores why adult friendships collapse and what to do about it. MORE

Spotify Serving Ads to Paid Subscribers. Reports surfaced of Spotify injecting ads into paid accounts on the desktop client with no official response. Raises real questions about what "premium" actually means anymore. MORE

Profiling HN Users with Claude. Simon Willison pulls a user's recent HN comments via the Algolia API and feeds them to Claude to generate a detailed profile. Surprisingly accurate—and a candid reminder of how much can be inferred from public comment data. MORE

Jason shares a powerful YouTube search tip using the "after:" operator to filter content by date while keeping YouTube's algorithm sorting. He created a bookmarklet to easily search for topics from just the last 48 hours. MORE

@wcbowling - Security Engineer at Zellic, bug bounty hunter and CTF player with perfect blue

@n_vanderhoeven - Developer advocate at k6, YouTuber, load testing and note-taking nerd

@codebeast - JavaScript teacher, musician, Co-founder & CTO at Rivva

@nathanbarry - Founder & CEO at Kit, the operating system for creators

@p4fg - Are developers better hackers? He thinks so

CSS Crossword. An interactive crossword where every clue is an HTML element, attribute, or web standard—coded entirely in CSS. A delightful niche diversion for web devs. MORE

100 Jumps. Minimalist platformer: charge, release, land 100 jumps. Perfect landings earn bonuses; difficulty scales fast. Simple, satisfying. MORE

A Journey Through Infertility. The Pudding's new interactive piece lets you experience IVF from either a parent's or child's perspective. Beautifully crafted and emotionally immediate. MORE

European Tech Map. A directory of 500+ EU-based tech alternatives across 30+ categories, browsable by country with an interactive map. Useful for GDPR compliance and data sovereignty decisions. MORE

It's Their Mona Lisa. A catalog of 17 institutions that call their prized possession "their Mona Lisa"—from MoMA's Gold Marilyn to the Mob Museum's bullet-riddled wall. MORE

delta. A syntax-highlighting pager for git, diff, and grep that makes terminal diffs dramatically more readable. Supports side-by-side view, line numbers, custom themes, and integrates cleanly with standard git workflows. MORE

Links Supply. A daily curated link digest sourced from Bluesky across tech, AI, culture, and current events—think Hacker News digest from the Bluesky ecosystem with RSS available. MORE

Coding Agents for Data Analysis. Simon Willison's full 3-hour NICAR 2026 workshop on using coding agents like Claude Code for data analysis. Notes and exercises available to work through at your own pace. MORE

NotebookLM Got a Massive Upgrade. NotebookLM's 2026 update brings significant new capabilities worth revisiting if you've been sleeping on it. A practical breakdown of what changed and how to use the new features. MORE

Designing for People with Anxiety. TetraLogical breaks down practical patterns that reduce cognitive load for anxious users—calming language, predictable navigation, forgiving forms. A useful checklist for any product built for real humans. MORE

Journalist Becomes iOS Developer with Claude Code. LinkedIn's editor in chief Daniel Roth shipped his first iOS app with zero prior coding experience using Claude Code. A compelling case study for AI-powered development. MORE

Designing with Claude Code. A deep dive into using Claude Code as a primary design tool, loaded with practical tips for developers who build their own UI. MORE

How I Built LennyRPG. Lenny Rachitsky breaks down how he built an RPG where you can converse with characters based on his newsletter content. A fun behind-the-scenes look at a playful AI product. MORE

Amazing Atlas. Tynan launched an AI-updated travel guide covering cities worldwide with maps, weather, attractions, transport, and safety tips—refreshed every one to two months. MORE

Lumon Terminal Theme for Omarchy. A cold corporate terminal theme for Omarchy inspired by Lumon Industries and Severance. Existential dread has never looked so clean. MORE

25 Years of Startup Punditry Failures. The same frameworks get recycled every decade, and startups keep failing the same ways. A sharp reminder that most startup wisdom is unfalsifiable and widely ignored. MORE

Every Layer of Review Makes You 10x Slower. Each approval step multiplies latency geometrically—the same network effects that grow successful products also strangle bureaucratic ones. A case for minimal review processes. MORE

3 Storytelling Mistakes Technical Leaders Make. Tech leaders often lead with data instead of narrative, bury the headline, and optimize for accuracy over clarity. Short, tactical fixes for each mistake. MORE

Don't Get Scammed While Job Hunting. Fake job listings targeting candidates are increasingly sophisticated. Practical guidance on spotting and avoiding recruitment scams before they cost you time and data. MORE

The AI-Native Product Manager. Dr. Marily Nika on why technical excellence alone isn't enough for AI products—covering PM skills specific to AI systems that most teams overlook. MORE