Blockchain

A major supply chain attack compromised over 30 WordPress plugins from the 'Essential Plugin' library. After being sold on Flippa to a commercial buyer, the plugins were updated with a dormant backdoor that triggered months later, using blockchain-based command-and-control to inject spam. WordPress.org eventually closed the plugins, but users must manually clean their compromised wp-config.php files.

Bitcoin miners face a crisis, with average production costs of $88,000 against a $69,200 market price. Rising energy costs from geopolitical tensions have caused hashrate drops and a 7.76% difficulty decline. Many miners are diversifying into AI and high-performance computing to mitigate losses as forced liquidations continue to impact the market structure.

A cryptographically-relevant quantum computer (CRQC) poses an existential threat to Bitcoin by breaking current signature schemes. While the exact timeline is uncertain, the risk necessitates proactive planning. The upgrade requires complex consensus changes, wallet migrations, and ecosystem coordination. Experts argue that prioritizing post-quantum cryptographic development is essential for Bitcoin's long-term survival and security.

The Resolv DeFi protocol lost $25 million after attackers compromised their AWS KMS environment to access privileged signing keys. By exploiting this off-chain weakness, hackers bypassed smart contract logic to mint 80 million unbacked USR tokens. This incident highlights the critical need for real-time, on-chain threat detection to safeguard against vulnerabilities in off-chain infrastructure.

Users of H&R Block Business 2025 software are warned of a critical security vulnerability. The application installs a rogue root certificate with an accessible private key, exposing systems to potent Man-in-the-Middle attacks. The certificate persists after uninstallation, and H&R Block has failed to remediate the issue despite internal awareness.