Bleeping Computer

Hackers exploit KerioControl firewall flaw to steal admin CSRF tokens

Hackers are trying to exploit CVE-2024-52875, a critical CRLF injection vulnerability that leads to 1-click remote code execution (RCE) attacks in GFI KerioControl firewall product. KerioControl is a ...
Hosted on MSN

TZoth DeFi Exploit Leads to $8.4M Loss, Sparks New Warnings Over Admin Key Risks

Zoth, a decentralized finance (DeFi) protocol focused on restaking real-world assets, has suffered a major security breach that led to losses exceeding $8.4 million. The company confirmed the exploit ...
Bleeping Computer

Google: Hackers used AI to develop zero-day exploit for web admin tool

Researchers at Google Threat Intelligence Group (GTIG) say that a zero-day exploit targeting a popular open-source web administration tool was likely generated using AI. The exploit could be leveraged ...
CoinDesk

Wasabi Protocol drained of $4.5 million in apparent admin key compromise

DeFi can't stop bleeding, and Wasabi Protocol is the latest to find out why. The protocol, a perpetuals trading platform built on Ethereum and Base, was drained of about $4.55 million on Thursday ...
Ars Technica

Hackers exploit VMware vulnerability that gives them hypervisor admin

Microsoft is urging users of VMware’s ESXi hypervisor to take immediate action to ward off ongoing attacks by ransomware groups that give them full administrative control of the servers the product ...
CoinTelegraph

Echo Protocol's eBTC exploited for $77M in admin key compromise

The hacker has already laundered nearly 5% of the loot through Tornado Cash and is still holding the remaining 955 eBTC. Decentralized finance protocol Echo Protocol was exploited after an attacker ...