Law enforcement actions and a relative dearth of zero-day bugs appear to have contributed to a sharp decline in exploit kit activity in recent months. It's too soon, however, to say whether the ...

The creators of a Web-based attack tool called Angler Exploit Kit have added an exploit for a known vulnerability in Microsoft’s Silverlight browser plug-in to the tool’s arsenal. Exploit kits are ...

This vendor-written tech primer has been edited by Network World to eliminate product promotion, but readers should note it will likely favor the submitter’s approach. Exploit kits comprised of ...

A new ransomware called Alma Locker has been discovered by Proofpoint researcher Darien Huss that encrypts a victim's data and then demands a ransom of 1 bitcoin within five days. Heimdall Security ...

Cybercriminals are taking a page from the software-as-a-service playbook: they’re now selling exploit kits complete with hosting services, with customers paying for the length of time the exploits are ...

Threat analysts have uncovered yet a new campaign that uses the RIG Exploit Kit to deliver the RedLine stealer malware. Exploit kits (EKs) have dropped drastically in popularity as they targeted ...

Ledger says some $600,000 in assets were stolen from users’ blind signing on EVM DApps, and it will ensure all victims are “made whole,” while blind signing will be disallowed by June 2024. Hardware ...

Users advised to avoid all dApp interactions as the exploit impacts a wide range of applications using ledger connectors. Blockaid detects a supply chain attack on ledgerconnect kit, compromising ...

A few months have passed since our Fall 2016 review of the most common exploit kits in our telemetry and honeypots. Since then, there haven’t been any major changes. Exploit kit-related infections ...

Some websites running the e-commerce platform Magento appear to have been infected with code that directs victims to the Neutrino exploit kit. It’s not exactly clear how the Magento sites were ...

A suspected malicious advertising attack turned out to be a much deeper compromise of an online advertising company, according to Trend Micro. The security company found that advertisements served by ...

Hackers backed by North Korea’s government exploited a critical Chrome zero-day in an attempt to infect the computers of hundreds of people working in a wide range of industries, including the news ...