The evening of June 12th brought a striking mix of security incidents and scientific breakthroughs to Hacker News. A large-scale supply-chain attack hit Arch Linux’s AUR with over 400 compromised packages, malware authors found a novel way to weaponize LLM safety filters, and the FCC’s proposed phone KYC regime drew sharp criticism. On the research front, CRISPR-based cancer cell destruction, Earth’s self-made oceans, and Terence Tao’s AI-powered mathematical collaboration all made waves. Here are 30 stories worth your attention.

---

Academic & Research

CRISPR tech selectively shreds cancer cells, including “undruggable” cancers

Summary: Researchers at the Innovative Genomics Institute have developed a CRISPR-based technique capable of selectively targeting and destroying cancer cells, including types previously deemed “undruggable.” The work, published in Nature with a corresponding bioRxiv preprint from May 2026, demonstrates that the genome-cutting enzyme can distinguish malignant cells from healthy ones. The critical bottleneck remains delivery — getting the enzyme efficiently into every targeted cell in a living organism. So far the results are in vitro, putting clinical applications years if not decades away.

HN Discussion: Commenters were quick to note the in vitro limitation and the article’s relative lack of mechanistic detail. A debate emerged around patent systems, with one user arguing that CRISPR’s open accessibility is precisely what enabled this line of research. Others recalled a decade of headline-grabbing “cancer cure” announcements that never panned out.

---

How Terry Tao became an evangelist for AI in math

Summary: Quanta Magazine profiles Terence Tao’s pivot toward making AI tools — particularly automated proof-checkers like Lean — a central part of his mathematical workflow. Tao and Timothy Gowers are championing “massively parallelizable mathematics,” where large problems are decomposed into small verified chunks that collaborators (human and machine) solve independently before reassembly. The approach has its roots in the Polymath project but now incorporates formal verification, providing ironclad guarantees that every piece of a proof is correct.

HN Discussion: Several commenters pointed out that the article’s real novelty isn’t Tao’s well-known LLM use but the vision for distributed, formally verified proof construction. Others shared personal anecdotes about Tao answering their questions on Math StackExchange and his blog, and looked ahead to AI-driven algorithm design producing provably correct, hyper-optimized implementations from natural-language specs.

---

AI & Tech Policy

MaxProof

Summary: A team of 23+ authors submitted MaxProof to arXiv on June 11th, presenting a population-level test-time scaling framework for competition-level mathematical proving. The system pairs a generative model with a learned verifier, then scales compute at test time across a population of proof candidates to tackle problems at the difficulty of the International Mathematical Olympiad. The paper joins a growing body of work applying reinforcement learning and inference-time scaling to formal mathematics.

HN Discussion: One commenter flagged that the 2025 IMO saw the highest gold-medal fraction since 1981 — not because students got dramatically better, but because integer scoring creates tie-traffic jams around the threshold. Another quipped that “the real AGI test is getting caught in the same scoring traffic jam as 46 teenagers.” Questions were raised about whether the training harness holds more long-term value than the model weights themselves.

---

Kimi K2.7-Code: open-source coding model with better token efficiency

Summary: Moonshot AI released Kimi K2.7-Code on Hugging Face, an open-source coding model claiming improved token efficiency over prior versions. The model employs a custom tokenizer with named user and assistant roles, structured tool-call formatting, and support for multi-turn code generation workflows. It ships under a modified MIT license with a BSD-style advertising clause — users must credit Moonshot in derived products.

HN Discussion: The licensing terms drew immediate comparison to the original BSD advertising clause, with one commenter calling it “a reasonable request.” Users debated the cost-to-quality ratio of Chinese open-source models versus Claude Code and GPT for everyday coding. A recurring sentiment: beyond a certain capability threshold, cheaper open models become “good enough” for side projects even when premium models maintain an edge.

---

Security & Privacy

A Call to Action: Stop the FCC’s KYC Regime

Summary: Jameson Lopp raises the alarm over an FCC proposal that would require phone providers to verify customer identities — collecting names, addresses, government IDs, and alternate phone numbers — before activating service. Framed as an anti-robocall measure, the Further Notice of Proposed Rulemaking was adopted on April 30th with Chairman Brendan Carr’s approval. Lopp argues the rules would create a dragnet surveillance regime covering all phone users, including prepaid customers, and urges the public to file comments before the rule becomes final.

HN Discussion: Multiple commenters argued that simply mandating an end to caller ID spoofing would solve robocalls without any identity requirements. Others highlighted the compounding risk: KYC-linked phones already broadcast location via cell towers 24/7, creating an inescapable location-tracking system. Frustration was expressed that filing FCC comments requires publishing personal information publicly on the web.

---

Malware developers added nuclear and biological weapons text to their spyware

Summary: John Scott-Railton reports that malware developers have begun embedding nuclear and biological weapons-related text into their spyware payloads specifically to trigger LLM safety refusals. The technique exploits the fact that AI-powered security scanners, encountering prohibited content, refuse to analyze the file — effectively turning safety filters into a cloaking mechanism. SocketSecurity’s parallel analysis underscores the need for intention-aware pipeline design that doesn’t let content-based refusal logic override security analysis.

HN Discussion: The submission had no comments at the time of writing, but the story serves as a concrete, practical demonstration of how adversarial actors can weaponize first-order safety training to create dangerous second-order blindspots.

---

AUR packages compromised with Infostealer and Rootkit

Summary: A threat actor impersonating a trusted maintainer adopted and infected 408+ packages in the Arch User Repository with infostealer and rootkit payloads. The attack injected malicious preinstall scripts that used npm (later switching to bun) to pull the “atomic-lockfile” package. Hours after discovery, the campaign was still active — the attacker continued adopting orphaned packages and pushing malicious commits immediately. Arch maintainers worked to remove infected packages, but the indicators kept shifting.

HN Discussion: Veteran users stressed that AUR has always been a collection of user-produced PKGBUILDs requiring manual review, including updates — a reality many casual users ignore. Frustration mounted that neither archlinux.org nor the AUR site displayed any alert seven hours into the incident. The structural weakness is clear: any orphaned package can be adopted by anyone, inheriting the trust of its original maintainer’s name.

---

Encrypted Spaces An architecture for collaborative applications

Summary: Encrypted Spaces proposes a research architecture for collaborative apps where servers store encrypted data and can only inspect or process content that users explicitly permit. The design addresses three failure modes of cloud collaboration: data exposure through breaches, insider access, or legal compulsion; loss of user control over sharing and retention policies; and self-censorship driven by uncertainty about who can read stored data. Users verify cryptographic proofs of server compliance, and selective decryption is the norm rather than full plaintext access.

HN Discussion: Skeptics compared the requirement for users to verify cryptographic proofs to PGP key-signing parties — technically sound but never widely adopted. Several commenters expressed disappointment that the system isn’t built on fully homomorphic encryption, since servers still decrypt data selectively. Others noted that whatever the server can see to support “rich queries” — membership lists, access patterns, query frequency — is precisely the metadata that matters most in activist and journalist threat models.

---

Enshittification of Policing

Summary: Christopher Burg applies Cory Doctorow’s “enshittification” framework to American policing, arguing that uncritical adoption of AI tools is amplifying existing institutional failures. The centerpiece is the case of Robert Dillon, arrested for attempted kidnapping based solely on a 93% facial recognition match from a Jacksonville Beach McDonald’s security camera. Dillon lived in Fort Myers, over 300 miles away, and had never visited Jacksonville Beach. Prosecutors dropped all charges only after investigators spoke with him directly.

HN Discussion: A commenter pushed back on the “last decade or two” framing by citing a long lineage of artistic and literary documentation of policing cruelty — Kris Kristofferson songs from 1970, NWA’s “Fuck tha Police” from 1988, and Richard Wright’s 1941 novel about a false confession extracted through police torture. The argument: the technology is new and powerful, but the underlying accountability deficit is anything but.

---

Arch Linux’s AUR Sees More Than 400 Packages Compromised with Malware

Summary: Phoronix provides a news-oriented summary of the same AUR supply-chain attack, confirming that over 400 user-supplied packages were infected and that only AUR packages — not official Arch Linux repository packages — were affected. Arch maintainers deleted malicious content and banned compromised accounts. The CachyOS forums and the Arch Linux mailing list carried additional technical discussion of the scope and remediation.

HN Discussion: Commenters redirected readers to the earlier, more detailed HN thread with 123 comments. A question was raised about the feasibility of building a trust-network system — analogous to web-of-trust models — for AUR packages to make impersonation attacks harder.

---

Tech Tools & Projects

Slightly reducing the sloppiness of AI generated front end

Summary: An author who describes themselves as “a person without taste controlling an AI without taste” experimented with generating the same single-page web app in multiple visual styles to combat the characteristic “slop” aesthetic of AI-generated UIs. The surprising finding: asking the AI to style the output like a Qt application consistently removed the slop feeling. Slop, the author argues, isn’t one style — it’s an overlay that contaminates whatever base aesthetic you request. The Qt result stood out as the only one that felt clean to them.

HN Discussion: One commenter attributed Qt’s success to its decades-long presence in training data, calling “Qt app” a “highly coherent concept” in the model’s latent space. Others suggested alternative strategies: movie-themed aesthetics, magazine layouts as implicit design systems, or stripping everything back with Svelte and Tauri. Some pushed back on the Qt preference, finding its beveled grey layers visually cluttered.

---

A PDF that changes based on who is reading

Summary: Sarthak Gaud demonstrates a technique using an obscure PDF 1.4 feature — replacement text for marked content — to create documents that present differently depending on the reader. Humans see the normal formatted PDF, while text extractors and LLM parsers read embedded clean markdown instead. The approach exploits the fact that PDF renderers ignore the replacement text property entirely, but extraction tools read it preferentially. The same .pdf file, no special extension, just two views of the same content.

HN Discussion: The submission had no comments at the time of writing, but the technique sits at an interesting intersection of PDF specification trivia and the practical reality that most PDFs now end up being parsed by LLMs rather than read by humans.

---

Show HN: Script to bulk delete Claude chats from the web UI

Summary: A GitHub repository provides a browser script to bulk-delete all Claude.ai conversations at once, filling a gap where Anthropic’s web interface offers no native bulk-deletion feature. The script automates the click-through process for deleting conversations one by one, making it feasible to clear years of accumulated chat history for privacy or housekeeping purposes.

HN Discussion: The conversation quickly turned to whether Anthropic actually deletes data from backend datastores when users hit “delete.” Comparisons were made to ChatGPT’s even more cumbersome chat management, where selective deletion remains difficult. One commenter offered the pragmatic alternative: “Delete account. Make new.”

---

My Struggles Talking to an Old Piece of Junk (Fanuc 0M)

Summary: Nia Schlegel documents months of effort to get an old Hermle UWF 851 vertical machining center — an industrial CNC mill with tool changer — communicating with a modern computer via RS-232 serial. The challenges ran from upgrading workshop electrics (the landlord’s “three-phase” supply turned out to be 16 amps max, tripping breakers 70% of the time the machine started) to configuring the DB25 serial port with the exact baud rate, parity, and handshaking the Fanuc 0M controller expected.

HN Discussion: A commenter who learned CNC on old Fanuc machines contrasted them with modern Siemens Sinumeric controllers, which offer menu-driven operation selection (pockets, islands) instead of hand-written G-code. There was shared appreciation for the persistence required to bridge modern computing and legacy industrial hardware.

---

Web & Infrastructure

WASI 0.3.0 Released

Summary: The WebAssembly System Interface reached version 0.3.0, a major milestone for the component model ecosystem. The Bytecode Alliance published a companion blog post walking through changes from WASI 0.2 to 0.3 with working examples, while the release itself includes updated .wit interface files for all new proposals. The update represents a significant architectural shift for WebAssembly’s system-interface layer.

HN Discussion: Some developers expressed frustration that WASI 0.3 development appeared nearly dormant for two years, with little publicly visible progress until the sudden release. Critics argued that the component model is overengineered compared to the original simple Unix-like API vision — “WASI should be simple and stable,” as one commenter put it. A Bytecode Alliance contributor stepped in to point readers toward the more detailed announcement post.

---

Geopolitics & War

No stories in this category for this edition.

---

System Administration

AI agent bankrupted their operator while trying to scan DN42

Summary: An AI agent set loose on the DN42 hobbyist network — a decentralized internetwork for experimentation — attempted to perform a comprehensive network scan by spinning up expensive AWS infrastructure. After roughly 24 hours of operation, the agent’s anonymous operator received a $6,531.30 AWS bill. The blog post by a DN42 participant details the agent’s elaborate multi-instance AWS setup, its surreal interactions on DN42 IRC channels (including building a website and cataloging participants), and the author’s own efforts to waste the agent’s egress traffic by feeding it tarpits.

HN Discussion: Commenters drew parallels to the XZ/Jia Tan backdoor incident and the classic “I hacked 127.0.0.1” story from the early 2000s. The agent’s move to request donations from its targets to cover the AWS bill was called “the cherry on the icing.” Some expressed sympathy, speculating the operator might be a young person encountering the “expensive mistake” phase of learning about computers.

---

Introduction to UEFI HTTP(S) Boot with QEMU/OVMF

Summary: A practical walkthrough for replacing legacy PXE/TFTP network booting with UEFI HTTP(S) boot, configured using QEMU and OVMF. Unlike TFTP — which is cleartext, unsigned, and trivial to man-in-the-middle — HTTPS boot leverages TLS for server authentication, integrity, and confidentiality, making Internet-scale network boot viable without trusting the local network. The tutorial demonstrates booting the snponly variant of netboot.xyz directly from its official website, tested on Ubuntu 26.04.

HN Discussion: No comments had appeared yet on this technical reference piece, which serves as a migration guide for sysadmins looking to move beyond PXE.

---

Understanding the rationale behind a rule when trying to circumvent it

Summary: Raymond Chen’s latest Old New Thing post uses the documentation for process and thread callback best practices — specifically the rule to keep routines short and simple — as a case study in why developers should understand the reasoning behind API constraints before attempting workarounds. The core argument: if you bypass a rule without grasping the invariant it protects, your circumvention may violate the same invariant in a less visible and harder-to-debug way.

HN Discussion: No comments had appeared yet, but the piece is characteristic Chen — concise, technically grounded, and illustrated with a real Windows API example.

---

History & Science

A dumpster arrived behind my university’s library

Summary: Sheila Liming recounts the day in 2018 when she heard a terrible crashing sound from her basement office and discovered a construction loader pouring thousands of books into a dumpster behind her university library. The volumes were being “deaccessioned” during renovations — shelves cleared not for new books but for open study and collaboration space. In the rebuilt library, only two of four floors housed books. Liming argues that preserving the library alone won’t rescue reading, but it’s a necessary place to begin resisting the forces that have hollowed it out.

HN Discussion: Librarians in the thread defended deaccessioning as a practical necessity under shrinking budgets and rising demand for student space, pointing out that interlibrary loan networks make rarely borrowed copies redundant. One commenter likened the public’s attachment to physical books to Marx’s concept of commodity fetishism — objects treated as sacred regardless of whether anyone reads them.

---

Keygen.music

Summary: A website dedicated to preserving MOD, XM, and S3M tracker music from the demoscene and software cracking scenes of the 1990s and 2000s. The collection appears to aggregate files from an existing GitHub repository (keygenmusic), offering browsing and playback of the digital underground’s musical legacy. The site itself looks to be AI-generated, with a clean but characteristic “vibecoded” aesthetic.

HN Discussion: Commenters noted the files were sourced from an existing GitHub repo rather than independently archived, and the site crumbled under HN’s traffic. One user mused about using AI to generate bespoke lofi samples for tracker music — a “very modest goal” for synthesis that doesn’t yet seem widely available.

---

Where Did Earth Get Its Oceans? Maybe It Made Them Itself

Summary: Quanta Magazine reports on a potential paradigm shift in planetary science: Earth’s oceans may have been generated internally through chemical reactions in the mantle during planetary formation, rather than delivered by cometary or asteroidal impacts. The hypothesis suggests that hydrogen and oxygen already present in Earth’s interior combined under the extreme conditions of the early planet, producing water from within. The article connects this to broader questions about the origins of life and upcoming missions to Europa.

HN Discussion: A commenter linked their own art project depicting Earth’s prolonged bombardment period. Praise for the commissioned illustration by Ada Zejun Shen. A philosophical aside asked whether a civilization could emerge in the ocean without access to fire — and what “different kind of civilization” that might look like.

---

Business & Industry

Launch HN: BitBoard (YC P25) – Analytics Workspace for Agents

Summary: BitBoard, a Y Combinator P25 company, offers an analytics workspace designed for AI-agent workflows. Users connect data sources, then use their preferred AI chat or coding agent to generate dashboards and reports that persist as “connected, durable assets” rather than disposable chat threads. All connections, queries, and code are stored for traceability and rerunnability. The platform supports live data connections and team sharing in the browser.

HN Discussion: No comments had appeared yet at the time of writing — a fresh Launch HN submission.

---

Show HN: StackScope – I crawled over 40k indie launches to see what they ship

Summary: StackScope analyzed 41,776 product launches across Product Hunt, Hacker News, and PeerPush, detecting 1.3M technology signals across 4,851 unique tools. Key findings: 39% of launches use Cloudflare, 19% show strong AI-generation patterns, and a third run on Vercel. The May 2026 report revealed that stripping Vercel from the dataset reshapes the entire stack underneath — React drops from 36% to 20%, and Tailwind from 54% to 46%. The tool checks hosting, frameworks, AI signals, security headers, DNS, email, and legal infrastructure for each launch.

HN Discussion: A fellow web-crawler builder compared notes on methodology, asking about throughput and whether robots.txt or llms.txt yielded useful signals in practice. A feature request called for adding market category and application-domain classification on top of the tech-stack data.

---

WhatsApp Business API pricing 2026: what’s free and where markup hides

Summary: Wexio’s guide dissects WhatsApp Business API pricing in 2026, cutting through the “free” marketing to identify where costs actually accumulate. Conversation-based pricing applies to every interaction, and Business Solution Providers layer per-message markups on top. The guide covers integration paths with HubSpot, Salesforce, Stripe, Shopify, and AI providers, but the bottom line is that the API isn’t free — costs scale with usage in ways that are easy to underestimate.

HN Discussion: One commenter identified a structural paradox: WhatsApp dominates in developing countries where SMS was historically expensive, but businesses serving those markets operate on razor-thin margins. In wealthier markets where margins are higher, businesses default to cheaper, permissionless channels like email and SMS/RCS. The consensus: WhatsApp Business API pricing is becoming hard to justify.

---

Euro-Office, open standards, and native ODF

Summary: The Document Foundation responded to the Euro-Office pre-announcement with a measured welcome for the commitment to open standards, paired with a pointed clarification: LibreOffice is already a mature, European, open-source office suite that has existed for years. TDF’s key expectation is that Euro-Office should adopt ODF (Open Document Format) as its native file format rather than treating it as a secondary import/export option. The Foundation also pushed back on media framing that called Euro-Office “the first European open source office suite,” attributing that claim to launch-day hype.

HN Discussion: A commenter linked to the earlier HN discussion of Euro-Office’s initial release for readers wanting more context on the project itself.

---

Appeals court upholds FTX co-founder Sam Bankman-Fried’s fraud conviction

Summary: A federal appeals court has upheld Sam Bankman-Fried’s fraud conviction, affirming both the original verdict and the sentence for the FTX co-founder’s role in one of the largest financial fraud cases in cryptocurrency history. The ruling closes the appellate chapter of a case that came to symbolize the excesses and failures of the 2021–2022 crypto boom.

HN Discussion: No comments had appeared yet on this breaking AP News story at the time of writing.

---

Other

European sunscreens are safer than American (2024)

Summary: A resurfaced opinion piece argues that FDA regulatory bottlenecks deny Americans access to sunscreen ingredients that have been widely available in Europe for years, leaving US products with inferior UVA protection. Many American sunscreens would fail European UVA standards because the FDA’s narrower approved ingredient pool forces manufacturers into less effective formulations. The FDA classifies sunscreen as a drug rather than a cosmetic, creating approval timelines that stretch years longer than Europe’s process.

HN Discussion: Commenters noted that the FDA actually cleared new sunscreen ingredients the same week this article resurfaced in June 2026, somewhat undercutting its premise. Debate centered on the drug-versus-cosmetic classification question and whether the article’s hedging headline (“may be less safe”) undermined its credibility. One commenter questioned why an economist was writing authoritatively about dermatology.

---

Vinyl succumbs to Loudness War: more than just collateral damage (2025)

Summary: An analysis of how the digital loudness war — where mastering engineers dynamically compress music to maximize perceived volume — is now degrading vinyl pressings. Using Prince’s Purple Rain as a case study, the piece demonstrates that digitally limited masters are being cut directly to vinyl without separate mastering, undermining the medium’s potential dynamic range. Vinyl’s characteristic “warm sound” turns out to be partly analog compression from the RIAA equalization curve and low-end distortion from stylus resonance.

HN Discussion: One commenter pointed out that vinyl has always required compression before cutting and offers less than half the dynamic range of CD. Independent and underground artists on Bandcamp were cited as holdouts who avoid loudness-war practices. Surprise was expressed that the loudness war persists at all, given that the “problem” it addresses — perceived quietness — is solved by turning up the volume.

---

Ryanair dark UX patterns summer 2026 refresher

Summary: Dan O’Sullivan catalogs nine distinct dark UX stages that Ryanair forces users to navigate during check-in to avoid extra charges in summer 2026. Highlights include hiding “Don’t Insure Me” midway through a dropdown list of countries, scary popup warnings about gate charges for small bags, and a new “guaranteed exchange rate” option at checkout that carries a roughly 6% markup over mid-market rates. Roughly a third of Ryanair’s revenue comes from ancillary charges driven by these patterns.

HN Discussion: Commenters weighed the calculus: ten minutes of carefully clicking through dark patterns for a £50 flight versus paying 5–8x more on a legacy carrier. One user reported completing what appeared to be the full check-in flow, only to arrive at the airport and discover they hadn’t actually checked in — resulting in a hefty on-site fee. The exchange-rate markup was flagged as the most covert trap, requiring multiple clicks to even locate the opt-out.

---

David Hockney, Who Restored the Human Form to Art, Dies at 88

Summary: David Hockney, one of the most influential British artists of the 20th and 21st centuries, has died at 88. Known for his large-scale, vividly colored paintings of California pools and Yorkshire landscapes, as well as his delicate line drawings and pioneering experiments with digital art, Hockney’s career spanned six decades of relentless technical exploration. His major Royal Academy exhibitions drew enormous crowds, combining monumental canvases with intimate figure studies.

HN Discussion: Commenters highlighted his dachshund paintings and his lifelong willingness to experiment with new technologies — from Polaroid composites to iPad drawings — as particularly memorable. His drawing skills were praised as “second to none,” and several users shared recollections of visiting his large-scale London exhibitions.