Ars Technica

Execute shell scripts via Safari (new exploit vector)

Well, here we go boys and girls.<BR><BR>Of course, you're not running as Administrator, so this isn't a problem for you, right? And you were probably smart enough to uncheck the <B>Open "Safe" files ...
The Hacker News

ClickFix Attacks Expand Using Fake CAPTCHAs, Microsoft Scripts, and Trusted Web Services

ClickFix uses fake CAPTCHAs and a signed Microsoft App-V script to deploy Amatera stealer on enterprise Windows systems.
PC World

Hackers exploit vBulletin Internet forum software vulnerability

Hackers are exploiting a vulnerability in the popular vBulletin Internet forum software in order to inject rogue administrator accounts into websites using it. The exploit was found by researchers ...
Dark Reading

Russian Script Kiddie Assembles Massive DDoS Botnet

A Russian script kiddie using little more than publicly available malware tools and exploits targeting weak credentials and configurations has assembled a distributed denial-of-service (DDoS) botnet ...
CNET

Crypto Exploit Let Criminals Steal $190 Million by Copy-Pasting a Script

Bad code has resulted in $190 million being drained from Nomad's bridge, a cryptocurrency protocol that allows people to move crypto coins between different blockchains. In what's being called a ...
Computer Weekly

Fileless attacks surge as hackers exploit PowerShell scripts

The latest quarterly threat report from McAfee noted a fourfold increase in fileless hacking attacks utilising Microsoft PowerShell scripts. PowerShell is used mainly to automate administration tasks, ...