Below I’ve curated cyber security news from the world-wide-web – the lefthand column is from “The Hacker News” website and on the right is news from “Security Week”. Both are top cyber security news sites. In the very least this shows that threats are daily and they are very real.
Hacker News
- Iran-Linked Hackers Use New Cavern C2 Framework...by info@thehackernews.com (The Hacker News) on July 6, 2026 at 6:34 pm
An Iranian hacking group affiliated with Iran's Ministry of Intelligence and Security (MOIS) has been wielding a previously undocumented modular command-and-control (C2) framework dubbed Cavern (aka Cav3rn) targeting Israeli organizations. The activity, which has primarily singled out IT providers […]
- 16-Year-Old Linux KVM Flaw Lets Guest VMs Escape...by info@thehackernews.com (The Hacker News) on July 6, 2026 at 5:37 pm
A use-after-free bug in Linux's KVM hypervisor can be triggered from a guest virtual machine to corrupt the shadow-page state of the host kernel that runs it. Dubbed 'Januscape' and tracked as CVE-2026-53359, the flaw sits in the shadow MMU code that KVM shares across both Intel and AMD. The […]
- Threat Actors Probe Gitea Docker Flaw...by info@thehackernews.com (The Hacker News) on July 6, 2026 at 4:28 pm
Threat actors have been observed attempting to exploit a recently patched critical security flaw in Gitea Docker images, according to Sysdig. The vulnerability in question is CVE-2026-20896 (CVSS score: 9.8), a vulnerability that stems from the DevOps platform trusting the "X-WEBAUTH-USER" header […]
- ⚡ Weekly Recap: Proxy Botnets, Browser...by info@thehackernews.com (The Hacker News) on July 6, 2026 at 1:01 pm
A streaming box should not need a threat model. Neither should a username field, a demo repo, a reset flow, or a browser permission prompt. That is the irritating part this week: the risky pieces were ordinary. Home devices became a routing cover. Clean code pulled dirt from a dependency. Identity […]
- How to Evaluate an AI SOC Platform in 2026: 6...by info@thehackernews.com (The Hacker News) on July 6, 2026 at 11:30 am
Building a shortlist for an AI SOC evaluation can be tough. SIEM, SOAR, and pureplay AI SOC vendors are all saying the same thing. But behind the identical label sit very different products, from chat assistants bolted onto a legacy SIEM to agent platforms that run detection, triage, investigation, […]
- Suspected China-Nexus Hackers Use Fake Indian Tax...by info@thehackernews.com (The Hacker News) on July 6, 2026 at 10:58 am
A suspected China-nexus threat activity cluster has been observed targeting Indian taxpayers, tax professionals, and corporate finance teams to deliver a remote access trojan designed to steal sensitive data from compromised hosts. The multi-stage campaign, codenamed Operation DragonReturn by […]
- New TrojPix Attack Leaks Data From Air-Gapped...by info@thehackernews.com (The Hacker News) on July 6, 2026 at 8:50 am
Researchers at Shandong University have shown a fast new way to pull data off computers that are cut off from every network. The technique, called TrojPix, tweaks on-screen pixels in ways the eye cannot see, so that the video cable carrying them radiates a faint radio signal a nearby receiver […]
- New Java-Based QuimaRAT MaaS Built to Run on...by info@thehackernews.com (The Hacker News) on July 6, 2026 at 8:13 am
Cybersecurity researchers have flagged a novel Java-based remote access trojan (RAT) called QuimaRAT that's capable of targeting Windows, Linux, and macOS environments. According to LevelBlue, the cross-platform malware is advertised under a malware-as-a-service (MaaS) model, costing anywhere […]
- Opera GX Flaw Let Malicious Sites Auto-Install...by info@thehackernews.com (The Hacker News) on July 6, 2026 at 7:27 am
Researchers found a flaw in Opera GX, the gaming-focused version of the Opera browser, that let a malicious website silently install a browser add-on and use it to lift specific data from the pages a victim visits. In a proof of concept, they reconstructed a signed-in user's full Gmail address […]
- SkillCloak Lets Malicious AI Agent Skills Evade...by info@thehackernews.com (The Hacker News) on July 6, 2026 at 6:33 am
Scanners meant to catch malicious add-on "skills" for AI coding agents can be fooled by a few simple changes that leave the malware working, according to a new study from researchers at the Hong Kong University of Science and Technology. Their strongest trick slipped past every scanner tested […]
WordPress News
- The First AI Leaders Graduatesby Mary Hubbard on June 29, 2026 at 8:29 pm
On June 23, around 40 students from the University of Illinois Chicago (UIC), Louisiana Tech University, and the University of Louisiana at Lafayette were celebrated in Chicago as the first cohort to receive the AI Leaders Micro-Credential through AI Leaders, the nation’s first workforce-focused […]
- Browse the New Mercantile Swag Storeby jillq on June 22, 2026 at 3:07 pm
Mercantile, the official swag store of the WordPress project, has a newly redesigned storefront with a catalog that now sits front and center, and a design tuned to hold up across a wide range of screen sizes. There are also small touches, like automatically selecting a variant when only one is in […]
- Kim Parsell Memorial Scholarship Opens for...by Brett McSherry on June 19, 2026 at 4:55 pm
Applications are now open for the 2026 Kim Parsell Memorial Scholarship, which supports one active WordPress contributor who identifies as a woman and has not previously attended WordCamp US. The scholarship helps make it possible for a community member with financial need to join WordCamp US 2026 […]
- Global Partners Across the First Half of the 2026...by Harmony Romo on June 18, 2026 at 5:01 pm
This post recaps how the WordPress project’s five Global Partners — Jetpack, WordPress.com, WooCommerce, Bluehost, and Hostinger — supported community events during the first half of 2026. Across more than a dozen regional the first WordPress Developers Day, and a growing network of WordPress […]
- What Happened at WordCamp Europe 2026by Nicholas Garofalo on June 6, 2026 at 5:44 pm
WordCamp Europe 2026 brought the WordPress community to Kraków for three days of contribution and conversation, from CERN going live on WordPress to WordPress 7.0, AI, and a closing fireside chat on where the project goes next. Read the full recap.
- Protect The Shireby Matt Mullenweg on June 5, 2026 at 6:51 pm
tl;dr: Temporary 24-hour cooldown period for plugin/theme releases before auto-updates. AI can give defenders an edge. We want to secure all 78K plugins and themes on WordPress.org. One of the things we’ve always striven to do as the developers of WordPress is to work harder so you don’t have […]
- WP23by Matt Mullenweg on May 27, 2026 at 5:40 pm
WordPress at 23 is simultaneously both the strongest and most precarious it’s ever been. Last week, we shipped WordPress 7 to the world. In seven days, 46% of all WordPresses, tens of millions across countless different hosting environments, are already on 7.0, auto-updated with no breakage. From […]
- Looking Ahead to WordCamp Europe 2026by Brett McSherry on May 26, 2026 at 12:52 pm
June 4-6, 2026 | ICE Kraków Congress Centre, Kraków, Poland WordCamp Europe 2026 will bring the WordPress community together in Kraków, Poland, from June 4–6 for Contributor Day, two conference days, and a program shaped by the ideas, tools, and people moving WordPress forward. This year’s […]
- WordPress 7.0 “Armstrong”by Matias Ventura on May 20, 2026 at 6:41 pm
Explore AI abilities directly in your website, all managed from a central hub. Slide seamlessly through the sleek, new admin theme implemented across the dashboard. Ignite creative flow with new blocks and design tools, and tap into an expansive developer toolbox that gives you more control than […]
- WordPress 7.0 Release Candidate 4by Amy Kamala on May 14, 2026 at 4:47 pm
The fourth Release Candidate (“RC4”) for WordPress 7.0 is ready for download and testing! This version of the WordPress software is under development. Please do not install, run, or test this version of WordPress on production or mission-critical websites. Instead, it’s recommended that you […]

















