Ars Technica

Execute shell scripts via Safari (new exploit vector)

Well, here we go boys and girls.<BR><BR>Of course, you're not running as Administrator, so this isn't a problem for you, right? And you were probably smart enough to uncheck the <B>Open "Safe" files ...
PC World

Hackers exploit vBulletin Internet forum software vulnerability

Hackers are exploiting a vulnerability in the popular vBulletin Internet forum software in order to inject rogue administrator accounts into websites using it. The exploit was found by researchers ...
Threat Post

‘EmoCrash’ Exploit Stoppered Emotet For 6 Months

A researcher developed a killswitch exploiting a buffer overflow in Emotet – preventing the malware from infecting systems for six months. A researcher was able to exploit a vulnerability in Emotet – ...
Dark Reading

TellYouThePass Ransomware Group Exploits Critical PHP Flaw

A threat group is exploiting a critical, easily exploitable PHP bug for remote code execution (RCE) in living-off-the-land style ransomware attacks that target businesses and individuals running both ...
Macworld

Safari exploit can make scripts run

Security firm Secunia on Tuesday documented a possible exploit in Apple’s Safari Web browser that the company describes as “extremely critical.” Secunia calls the exploit Mac OS X “__MACOSX” ZIP ...
Bleeping Computer

Latest Exploit Chain news

CISA and the FBI warned today that attackers are still exploiting Ivanti Cloud Service Appliances (CSA) security flaws patched since September to breach vulnerable networks. Palo Alto Networks warned ...
ZDNet

Researchers publish Snapchat code allowing phone number matching after exploit disclosures ignored

Hackers have made sure that popular photo sharing app Snapchat got a hearty lump of coal for Christmas. After having its security disclosure go ignored since August, Gibson Security has published ...