Below I’ve curated cyber security news from the world-wide-web – the lefthand column is from “The Hacker News” website and on the right is news from “Security Week”. Both are top cyber security news sites. In the very least this shows that threats are daily and they are very real.
Hacker News
- Meta Adds Passkey Login Support to Facebook for...by info@thehackernews.com (The Hacker News) on June 19, 2025 at 6:04 am
Meta Platforms on Wednesday announced that it's adding support for passkeys, the next-generation password standard, on Facebook. "Passkeys are a new way to verify your identity and login to your account that's easier and more secure than traditional passwords," the tech giant said in a post. […]
- New Linux Flaws Enable Full Root Access via PAM...by info@thehackernews.com (The Hacker News) on June 19, 2025 at 3:33 am
Cybersecurity researchers have uncovered two local privilege escalation (LPE) flaws that could be exploited to gain root privileges on machines running major Linux distributions. The vulnerabilities, discovered by Qualys, are listed below - CVE-2025-6018 - LPE from unprivileged to allow_active in […]
- New Malware Campaign Uses Cloudflare Tunnels to...by info@thehackernews.com (The Hacker News) on June 18, 2025 at 3:41 pm
A new campaign is making use of Cloudflare Tunnel subdomains to host malicious payloads and deliver them via malicious attachments embedded in phishing emails. The ongoing campaign has been codenamed SERPENTINE#CLOUD by Securonix. It leverages "the Cloudflare Tunnel infrastructure and Python-based […]
- 1,500+ Minecraft Players Infected by Java Malware...by info@thehackernews.com (The Hacker News) on June 18, 2025 at 2:18 pm
A new multi-stage malware campaign is targeting Minecraft users with a Java-based malware that employs a distribution-as-service (DaaS) offering called Stargazers Ghost Network. "The campaigns resulted in a multi-stage attack chain targeting Minecraft users specifically," Check Point researchers […]
- FedRAMP at Startup Speed: Lessons Learnedby info@thehackernews.com (The Hacker News) on June 18, 2025 at 11:00 am
For organizations eyeing the federal market, FedRAMP can feel like a gated fortress. With strict compliance requirements and a notoriously long runway, many companies assume the path to authorization is reserved for the well-resourced enterprise. But that’s changing. In this post, we break down […]
- Water Curse Employs 76 GitHub Accounts to Deliver...by info@thehackernews.com (The Hacker News) on June 18, 2025 at 10:47 am
Cybersecurity researchers have exposed a previously unknown threat actor known as Water Curse that relies on weaponized GitHub repositories to deliver multi-stage malware. "The malware enables data exfiltration (including credentials, browser data, and session tokens), remote access, and long-term […]
- Ex-CIA Analyst Sentenced to 37 Months for Leaking...by info@thehackernews.com (The Hacker News) on June 18, 2025 at 6:43 am
A former U.S. Central Intelligence Agency (CIA) analyst has been sentenced to little more than three years in prison for unlawfully retaining and transmitting top secret National Defense Information (NDI) to people who were not entitled to receive them and for attempting to cover up the malicious […]
- CISA Warns of Active Exploitation of Linux Kernel...by info@thehackernews.com (The Hacker News) on June 18, 2025 at 6:43 am
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday placed a security flaw impacting the Linux kernel in its Known Exploited Vulnerabilities (KEV) catalog, stating it has been actively exploited in the wild. The vulnerability, CVE-2023-0386 (CVSS score: 7.8), is an improper […]
- Veeam Patches CVE-2025-23121: Critical RCE Bug...by info@thehackernews.com (The Hacker News) on June 18, 2025 at 5:49 am
Veeam has rolled out patches to contain a critical security flaw impacting its Backup & Replication software that could result in remote code execution under certain conditions. The security defect, tracked as CVE-2025-23121, carries a CVSS score of 9.9 out of a maximum of 10.0. "A […]
- Iran Slows Internet to Prevent Cyber Attacks Amid...by info@thehackernews.com (The Hacker News) on June 18, 2025 at 5:35 am
Iran has throttled internet access in the country in a purported attempt to hamper Israel's ability to conduct covert cyber operations, days after the latter launched an unprecedented attack on the country, escalating geopolitical tensions in the region. Fatemeh Mohajerani, the spokesperson of the […]
WordPress News
- WCEU 2025: A Community Celebration in the Swiss...by Brett McSherry on June 7, 2025 at 7:19 pm
Over 1,723 attendees from 84 countries gathered at the Messe and Congress Center Basel in Switzerland, and 20,353 more joined online for WordCamp Europe 2025. I’m personally very excited… There’s so much I want to do. I think there’s a clear pathway to 7.0 and beyond. Matt Mullenweg, […]
- Announcing the Formation of the WordPress AI Teamby Mary Hubbard on May 27, 2025 at 4:28 pm
Today, I’m pleased to announce the formation of a new WordPress AI Team, a dedicated group focused on accelerating and coordinating artificial intelligence projects across the WordPress ecosystem. AI is already transforming how people create and manage content online. As this technology evolves, […]
- WordPress Campus Connect Expandsby Anand Upadhyay on May 7, 2025 at 12:40 pm
WordPress Campus Connect, initially launched in October 2024 as a pilot program, has now been formally established as an official event series due to its resounding success. The inaugural program, spearheaded by myself, Anand Upadhyay, garnered immense enthusiasm from 400 Indian students who were […]
- WordPress 6.8.1 Maintenance Releaseby Aaron Jorbin on April 30, 2025 at 5:17 pm
WordPress 6.8.1 is now available! This minor release includes fixes for 15 bugs throughout Core and the Block Editor addressing issues affecting multiple areas of WordPress including the block editor, multisite, and REST API. For a full list of bug fixes, please refer to the release candidate […]
- WordPress Jubileeby Matt Mullenweg on April 22, 2025 at 2:07 am
As I said, we’re dropping all the human blocks. Community guidelines, directory guidelines, and such will need to be followed going forward, but whatever blocks were in place before are now cleared. It may take a few days, but any pre-existing blocks are considered bugs to be fixed.
- WordPress 6.8 “Cecil”by Jeffrey Paul on April 15, 2025 at 5:00 pm
WordPress 6.8, code-named “Cecil,” refines your creative workflow with a streamlined Style Book, now available in select Classic themes. Enjoy faster navigation via speculative loading, stronger security with bcrypt password hashing, and over 100 accessibility improvements. With thoughtful […]
- WordCamp Europe 2025: Sali, Basel!by Brett McSherry on April 14, 2025 at 7:16 pm
WordCamp Europe 2025 will be held in gorgeous Basel, Switzerland, from June 5 to 7. It will bring together open source enthusiasts, developers, and WordPress professionals from across the region—and the world! This year’s event offers fresh perspectives, engaging conversations, and countless […]
- WordPress 6.8 Release Candidate 3by Jeffrey Paul on April 8, 2025 at 3:54 pm
WordPress 6.8 RC 3 is ready for download and testing! The scheduled final release date for WordPress 6.8 is April 15, 2025. Your help testing over the next week is vital to ensuring the final release is everything it should be: stable, powerful, and intuitive.
- WordPress 6.8 Release Candidate 2by Jonathan Desrosiers on April 1, 2025 at 3:53 pm
The second Release Candidate (“RC2”) for WordPress 6.8 is ready for download and testing! This version of the WordPress software is under development. Please do not install, run, or test this version of WordPress on production or mission-critical websites. Instead, it’s recommended that you […]
- WordPress 6.8 Release Candidate 1by Jeffrey Paul on March 25, 2025 at 4:19 pm
WordPress 6.8 RC 1 is ready for download and testing! The scheduled final release date for WordPress 6.8 is April 15, 2025. Your help testing over the next three weeks is vital to ensuring the final release is everything it should be: stable, powerful, and intuitive.