Bleeping Computer

Hackers exploit OttoKit WordPress plugin flaw to add admin accounts

Hackers are exploiting a critical unauthenticated privilege escalation vulnerability in the OttoKit WordPress plugin to create rogue admin accounts on targeted sites. OttoKit (formerly SureTriggers) ...
Bleeping Computer

Exploit released for Cisco SSM bug allowing admin password changes

Cisco warns that exploit code is now available for a maximum severity vulnerability that lets attackers change any user password on unpatched Cisco Smart Software Manager On-Prem (Cisco SSM On-Prem) ...
BeInCrypto

Echo Protocol Hack Autopsy: The $76 Million Exploit That Wasn’t Really a Hack

The Echo Protocol hack revealed DeFi’s growing operational security crisis after attackers minted $76.7M fake eBTC using a stolen admin key.