The Hacker News

Hackers Exploit Gravity SMTP WordPress Plugin Bug to Expose API Keys

Attackers are exploiting CVE-2026-4020 in Gravity SMTP to leak API keys, OAuth tokens, and system data from WordPress sites.
Tech Times

WordPress Email Plugin Flaw Triggers 17 Million Attacks: Gravity SMTP Leaks Live API Keys

Gravity SMTP WordPress vulnerability CVE-2026-4020 has drawn 17 million automated exploit attempts since May 2026, draining ...
The Next Web

Hackers are mass-exploiting a Gravity SMTP flaw to steal API keys from 100,000 WordPress sites

Wordfence has blocked 17M+ exploit attempts targeting a Gravity SMTP bug that leaks API keys, OAuth tokens, and full system reports without authentication.
Bleeping Computer

New 'HTTP/2 Bomb' DoS attack crashes web servers in under a minute

A new denial-of-service (DoS) attack dubbed HTTP/2 Bomb can be launched from a single machine to take down web servers within seconds. The technique works on default HTTP/2 configurations of major web ...
Digital Trends

How to find archived emails in Gmail and return them to your inbox

If your Gmail inbox is a mess but you’re not quite ready to delete anything, archiving is usually the better move. It clears emails out of your main inbox without actually getting rid of them, which ...
CNET

After 21 Years, Gmail Finally Lets You Change Your Email Address. Here's How

Google's long-awaited username change feature lets you swap out your old Gmail handle without losing a single message, file or Google service link. Tyler Graham Writer Tyler is a writer for CNET ...