[HackerNews] Critical Flaw in OpenSea Could Have Let Hackers Steal Cryptocurrency From Wallets

A now-patched critical vulnerability in OpenSea, the world’s largest non-fungible token (NFT) marketplace, could’ve been abused by malicious actors to drain cryptocurrency funds from a victim by sending a specially-crafted token, opening a new attack vector for exploitation.
The findings come from cybersecurity firm Check Point Research, which began an investigation into the platform following

Source: Read More (The Hacker News)

You might be interested in …

[ZDNet] US indicts UK resident ‘PlugwalkJoe’ for cryptocurrency theft

All posts, ZDNet

The UK national is accused of stealing $784,000 in cryptocurrency. Source: Read More (Latest topics for ZDNet in Security)

Read More

[NCSC-FI News] Chinese Hackers Target VMware Horizon Servers with Log4Shell to Deploy Rootkit

A Chinese advanced persistent threat tracked as Deep Panda has been observed exploiting the Log4Shell vulnerability in VMware Horizon servers to deploy a backdoor and a novel rootkit on infected machines with the goal of stealing sensitive data. Source: Read More (NCSC-FI daily news followup)

Read More

[BleepingComputer] Cisco: Firewall manager RCE bug is a zero-day, patch incoming

In a Thursday security advisory update, Cisco revealed that a remote code execution (RCE) vulnerability in the Adaptive Security Device Manager (ADSM) Launcher disclosed last month is a zero-day bug that has yet to receive a security update. […] Source: Read More (BleepingComputer)

Read More