The Hacker News

Popular WordPress Plugin Scripts Tampered to Plant Hidden Backdoors on Sites

Tampered JavaScript in three Awesome Motive plugins exposed WordPress sites to rogue admin accounts and hidden backdoors.
Flamingo on MSNOpinion

Admin abuse in Roblox somehow got even worse

I joined Roblox games with full admin powers… and immediately started causing chaos. From trolling random players and ...
Sportskeeda

Slime RNG Admin Abuse guide

Unlike many Roblox games that host Admin Abuse events on a fixed schedule, Slime RNG follows a much more unpredictable pattern. These events are usually organized before major updates, milestone ...
Ars Technica

Google publishes exploit code threatening millions of Chromium users

Google on Wednesday published exploit code for an unfixed vulnerability in its Chromium browser codebase that threatens millions of people using Chrome, Microsoft Edge, and virtually all other ...
abc7NY

Knicks flip script, exploit James Harden to spark Game 1 rally

NEW YORK -- It wasn't quite a matter of pettiness, but the Knicks found their idea for an improbable comeback thanks to the Cavaliers trying to exploit Jalen Brunson on defense. Trailing by 22 points ...
CoinDesk

Echo Protocol suffers $76 million exploit in eBTC minting attack on Monad

Echo Protocol is the latest decentralized finance (DeFi) platform to be hacked, suffering an exploit worth around $77 million. The Bitcoin-focused DeFi protocol suffered an attack in which about 1,000 ...
Forbes

Microsoft Confirms Active 0-Day Exploit—Check Emergency Mitigation

This voice experience is generated by AI. Learn more. This voice experience is generated by AI. Learn more. Microsoft confirms Exchange zero-day, CISA warns it's under active exploitation. Updated May ...
CoinTelegraph

Echo Protocol's eBTC exploited for $77M in admin key compromise

The hacker has already laundered nearly 5% of the loot through Tornado Cash and is still holding the remaining 955 eBTC. Decentralized finance protocol Echo Protocol was exploited after an attacker ...
Ars Technica

Zero-day exploit completely defeats default Windows 11 BitLocker protections

A zero-day exploit circulating online allows people with physical access to a Windows 11 system to bypass default BitLocker protections and gain complete access to an encrypted drive within seconds.
NBC News

Google disrupts hackers using AI to exploit an unknown weakness in a company’s digital defense

Google said Monday that it had disrupted a criminal group’s attempt to use artificial intelligence to exploit another company’s previously unknown digital vulnerability, adding to heightened worries ...
Bleeping Computer

Google: Hackers used AI to develop zero-day exploit for web admin tool

Researchers at Google Threat Intelligence Group (GTIG) say that a zero-day exploit targeting a popular open-source web administration tool was likely generated using AI. The exploit could be leveraged ...