CoinTelegraph

Crypto hacks, scam losses reach $29M in December, lowest in 2024

Update Jan. 16 at 11 pm: This article has been updated to include responses from CertiK and PeckShield. Losses to crypto scams, exploits and hacks tapered off in the last months of 2024, with December ...
Infosecurity-magazine.com

2024 Sees Sharp Increase in Microsoft Tool Exploits

Threat actors’ abuse of legitimate Microsoft tools rose by 51% in the first half of 2024 compared to 2023, according to Sophos’ latest Active Adversary Report. The researchers observed 187 unique ...
CoinTelegraph

RWA protocol exploits reach $14.6M in H1 2025, surpassing 2024

Real-world asset protocols present an “evolving” threat landscape that offers a larger attack surface for hackers, according to CertiK. Cryptocurrency hackers are targeting real-world asset (RWA) ...
Bleeping Computer

Fake LDAPNightmware exploit on GitHub spreads infostealer malware

A deceptive proof-of-concept (PoC) exploit for CVE-2024-49113 (aka "LDAPNightmare") on GitHub infects users with infostealer malware that exfiltrates sensitive data to an external FTP server. The ...
Ars Technica

Critical WordPress plugin vulnerability under active exploit threatens thousands

Thousands of sites running WordPress remain unpatched against a critical security flaw in a widely used plugin that was being actively exploited in attacks that allow for unauthenticated execution of ...
Bleeping Computer

Exploit released for critical WhatsUp Gold RCE flaw, patch now

A proof-of-concept (PoC) exploit for a critical-severity remote code execution flaw in Progress WhatsUp Gold has been published, making it critical to install the latest security updates as soon as ...
Harvard Medical School

Misinformation exploits outrage to spread online

Kate Klonick and coauthors test the hypothesis that misinformation exploits outrage to gain traction online. "Because outrage is associated with increased engagement online, outrage-evoking ...