CoinDesk

Audit admin keys, not just code, expert says after $200 million Drift exploit

Gold, silver fall as investors doubt Trump’s exit plan (The Wall Street Journal): Gold and silver prices swung into the red, ...
ZDNet

ATLAS game taken offline twice after users hack admin account, find server exploit

The online servers of the newly launched ATLAS game have suffered some "technical difficulties" after players hacked an admin account, used exploits to mess with other players' gameplay, and spammed ...
Bleeping Computer

Hackers exploit KerioControl firewall flaw to steal admin CSRF tokens

Hackers are trying to exploit CVE-2024-52875, a critical CRLF injection vulnerability that leads to 1-click remote code execution (RCE) attacks in GFI KerioControl firewall product. KerioControl is a ...
Bleeping Computer

Hackers exploit Modular DS WordPress plugin flaw for admin access

Hackers are actively exploiting a maximum severity flaw in the Modular DS WordPress plugin that allows them to bypass authentication remotely and access the vulnerable sites with admin-level ...
ZDNet

Hackers exploit zero-day in WordPress plugin to create rogue admin accounts

Hackers are exploiting a zero-day vulnerability in a WordPress plugin made by ThemeREX, a company that sells commercial WordPress themes. The attacks, detected by Wordfence, a company that provides a ...
CoinTelegraph

Hacker steals $8.4M from RWA restaking protocol Zoth

Zoth suffered an $8.4 million exploit after admin privileges were compromised. The team promised to publish a full incident report post-investigation. Real-world asset (RWA) re-staking protocol Zoth ...
CoinTelegraph

OKX DEX suffers $2.7M exploit after proxy admin contract upgrade

The OKX DEX suffered an exploit resulting in a loss of around $2.7 million in cryptocurrencies after a proxy admin upgraded a contract that allowed a hacker to compromise the private key. OKX ...