Below I’ve curated cyber security news from the world-wide-web – the lefthand column is from “The Hacker News” website and on the right is news from “Security Week”. Both are top cyber security news sites. In the very least this shows that threats are daily and they are very real.
Hacker News
- Malicious ML Models on Hugging Face Leverage...by info@thehackernews.com (The Hacker News) on February 8, 2025 at 6:17 am
Cybersecurity researchers have uncovered two malicious machine learning (ML) models on Hugging Face that leveraged an unusual technique of "broken" pickle files to evade detection. "The pickle files extracted from the mentioned PyTorch archives revealed the malicious Python content at the beginning […]
- DeepSeek App Transmits Sensitive User and Device...by info@thehackernews.com (The Hacker News) on February 7, 2025 at 2:58 pm
A new audit of DeepSeek's mobile app for the Apple iOS operating system has found glaring security issues, the foremost being that it sends sensitive data over the internet sans any encryption, exposing it to interception and manipulation attacks. The assessment comes from NowSecure, which also […]
- CISA Warns of Active Exploits Targeting Trimble...by info@thehackernews.com (The Hacker News) on February 7, 2025 at 12:52 pm
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has warned that a security flaw impacting Trimble Cityworks GIS-centric asset management software has come under active exploitation in the wild. The vulnerability in question is CVE-2025-0994 (CVSS v4 score: 8.6), a deserialization […]
- AI-Powered Social Engineering: Reinvented Threatsby info@thehackernews.com (The Hacker News) on February 7, 2025 at 11:10 am
The foundations for social engineering attacks – manipulating humans – might not have changed much over the years. It’s the vectors – how these techniques are deployed – that are evolving. And like most industries these days, AI is accelerating its evolution. This article explores how […]
- Microsoft Identifies 3,000 Leaked ASP.NET Keys...by info@thehackernews.com (The Hacker News) on February 7, 2025 at 11:01 am
Microsoft is warning of an insecure practice wherein software developers are incorporating publicly disclosed ASP.NET machine keys from publicly accessible resources, thereby putting their applications in attackers' pathway. The tech giant's threat intelligence team said it observed limited […]
- India’s RBI Introduces Exclusive "bank.in"...by info@thehackernews.com (The Hacker News) on February 7, 2025 at 10:32 am
India's central bank, the Reserve Bank of India (RBI), said it's introducing an exclusive "bank.in" internet domain for banks in the country to combat digital financial fraud. "This initiative aims to reduce cyber security threats and malicious activities like phishing; and, streamline secure […]
- Hackers Exploiting SimpleHelp RMM Flaws for...by info@thehackernews.com (The Hacker News) on February 7, 2025 at 5:19 am
Threat actors have been observed exploiting recently disclosed security flaws in SimpleHelp's Remote Monitoring and Management (RMM) software as a precursor for what appears to be a ransomware attack. The intrusion leveraged the now-patched vulnerabilities to gain initial access and maintain […]
- Fake Google Chrome Sites Distribute ValleyRAT...by info@thehackernews.com (The Hacker News) on February 6, 2025 at 2:34 pm
Bogus websites advertising Google Chrome have been used to distribute malicious installers for a remote access trojan called ValleyRAT. The malware, first detected in 2023, is attributed to a threat actor tracked as Silver Fox, with prior attack campaigns primarily targeting Chinese-speaking […]
- Ransomware Extortion Drops to $813.5M in 2024,...by info@thehackernews.com (The Hacker News) on February 6, 2025 at 2:03 pm
Ransomware attacks netted cybercrime groups a total of $813.5 million in 2024, a decline from $1.25 billion in 2023. The total amount extorted during the first half of 2024 stood at $459.8 million, blockchain intelligence firm Chainalysis said, adding payment activity slumped after July 2024 by […]
- SparkCat Malware Uses OCR to Extract Crypto...by info@thehackernews.com (The Hacker News) on February 6, 2025 at 11:32 am
A new malware campaign dubbed SparkCat has leveraged a suit of bogus apps on both Apple's and Google's respective app stores to steal victims' mnemonic phrases associated with cryptocurrency wallets. The attacks leverage an optical character recognition (OCR) model to exfiltrate select images […]
WordPress News
- Joost/Karim Forkby Matt Mullenweg on January 11, 2025 at 2:06 am
Making great software, great product that stands the test of time and not just survives but thrives through monumental technological shifts is incredibly hard. That challenge is part of the reason I love doing it. There is never a dull day, and the reward of seeing the code you wrote used by the […]
- WordPress Themes Need More Weird: A Call for...by Nick Hamze on January 2, 2025 at 6:53 pm
The modern web has gradually shifted from a vibrant tapestry of personal expression to a landscape of identical designs, where millions of websites share not just similar structures, but identical visual language, spacing, and interaction patterns. As we collectively gravitate toward the same […]
- Holiday Breakby Matt Mullenweg on December 20, 2024 at 12:36 am
In order to give myself and the many tired volunteers around WordPress.org a break for the holidays, we’re going to be pausing a few of the free services currently offered: We’re going to leave things like localization and the forums open because these don’t require much moderation. As you […]
- State of the Word 2024: Legacy, Innovation, and...by Nicholas Garofalo on December 16, 2024 at 9:28 pm
On a memorable evening in Tokyo, State of the Word 2024 brought together WordPress enthusiasts from around the world—hundreds in person and millions more online. This event marked the first time State of the Word was hosted in Asia, reflecting the platform's growing global reach.
- Write Books With the Block Editorby Ella on December 16, 2024 at 8:36 am
If you need a little push to start writing this winter, in the comfort of your familiar editor, here it is! You can now use the Block Editor to create electronic books and other documents—all completely offline. What a full circle moment for Gutenberg! The Block Editor contains so many features I […]
- Openverse.org: A Sight for Sore Eyesby Brett McSherry on December 11, 2024 at 5:45 pm
Openverse.org, the vibrant platform for openly licensed media, has introduced a sleek and modern Dark Mode feature. This new site theme is designed to enhance users’ comfort and style as they explore the extensive library of creative resources. Whether for late-night browsing or simply a […]
- WordPress 6.7.1 Maintenance Releaseby Jonathan Desrosiers on November 21, 2024 at 2:56 pm
WordPress 6.7.1 is now available! This minor release features 16 bug fixes throughout Core and the Block Editor. WordPress 6.7.1 is a fast-follow release with a strict focus on bugs introduced in WordPress 6.7. The next major release will be version 6.8, planned for April 2025. If you have sites […]
- WordPress 6.7 “Rollins”by Matt Mullenweg on November 12, 2024 at 9:35 pm
WordPress 6.7, code-named 'Rollins,' celebrates legendary jazz saxophonist Sonny Rollins and debuts the sleek, versatile Twenty Twenty-Five theme, designed for any blog, any scale. Dive into new font management features and gain a macro perspective on your site with the Zoom Out feature. Embrace […]
- WordPress 6.7 Release Candidate 3by David Baumwald on November 5, 2024 at 5:02 pm
The third release candidate (RC3) for WordPress 6.7 is ready for download and testing! This version of the WordPress software is under development. Please do not install, run, or test this version of WordPress on production or mission-critical websites. Instead, it’s recommended that you evaluate […]
- WordPress 6.7 Release Candidate 2by David Baumwald on October 29, 2024 at 5:08 pm
The second release candidate (RC2) for WordPress 6.7 is ready for download and testing! This version of the WordPress software is under development. Please do not install, run, or test this version of WordPress on production or mission-critical websites. Instead, it’s recommended that you […]