Google and iVerify analysis reveals a powerful exploit kit originally used by Russian state actors that is now appearing in broader criminal campaigns. Multiple iOS exploits and five exploit chains ...

LayerZero Labs has released its incident report on the KelpDAO bridge attack, saying about $292 million in rsETH was stolen after attackers poisoned RPC infrastructure used by its verification network ...

Google on Wednesday published exploit code for an unfixed vulnerability in its Chromium browser codebase that threatens millions of people using Chrome, Microsoft Edge, and virtually all other ...

LayerZero Labs just confirmed it. Roughly $292 million in rsETH was stolen from the KelpDAO bridge after attackers went after the RPC infrastructure — the layer that sits underneath the network’s ...

A security researcher has released a proof-of-concept exploit for a Windows privilege escalation zero-day called MiniPlasma, raising fresh concerns about the security of fully patched Windows systems.

DeFi has spent years obsessing over smart contract audits. The KelpDAO exploit on April 18 suggests the industry has been studying for the wrong exam. Attackers stole 116,500 rsETH, worth ...

A zero-day exploit circulating online allows people with physical access to a Windows 11 system to bypass default BitLocker protections and gain complete access to an encrypted drive within seconds.

LayerZero, a cross-chain messaging protocol, has publicly apologized for its handling of communications following a major security incident involving Kelp DAO. In a detailed update released on its ...

What Did LayerZero Admit About the Kelp DAO Exploit? LayerZero issued a public apology Friday over its handling of the April 18 exploit that drained roughly $292 million in rsETH from Kelp DAO’s cross ...

KelpDAO says LayerZero’s own DVN infrastructure was breached on April 18, causing over $300M in DeFi losses. Independent researchers confirmed the attack originated ...

A fake RPC server can be used to listen for RPC requests and impersonate the target service to elevate privileges to System. A vulnerability in the Windows Remote Procedure Call (RPC) mechanism allows ...

An unpatched vulnerability can allow for privilege escalation across Windows systems through the abuse of the Remote Procedure Call (RPC) architecture in Microsoft's OS. Called PhantomRPC, the flaw ...