Ars Technica

Execute shell scripts via Safari (new exploit vector)

Well, here we go boys and girls.<BR><BR>Of course, you're not running as Administrator, so this isn't a problem for you, right? And you were probably smart enough to uncheck the <B>Open "Safe" files ...
Macworld

Safari exploit can make scripts run

Security firm Secunia on Tuesday documented a possible exploit in Apple’s Safari Web browser that the company describes as “extremely critical.” Secunia calls the exploit Mac OS X “__MACOSX” ZIP ...
Computer Weekly

Fileless attacks surge as hackers exploit PowerShell scripts

The latest quarterly threat report from McAfee noted a fourfold increase in fileless hacking attacks utilising Microsoft PowerShell scripts. PowerShell is used mainly to automate administration tasks, ...
Bleeping Computer

Unpatched Flaw Affects All Docker Versions, Exploits Ready

All versions of Docker are currently vulnerable to a race condition that could give an attacker both read and write access to any file on the host system. Proof-of-concept code has been released. The ...
Dark Reading

Russian Script Kiddie Assembles Massive DDoS Botnet

A Russian script kiddie using little more than publicly available malware tools and exploits targeting weak credentials and configurations has assembled a distributed denial-of-service (DDoS) botnet ...
ZDNet

Researchers publish Snapchat code allowing phone number matching after exploit disclosures ignored

Hackers have made sure that popular photo sharing app Snapchat got a hearty lump of coal for Christmas. After having its security disclosure go ignored since August, Gibson Security has published ...