SEO spam is getting smarter and louder. AkiraBot launched a massive campaign targeting over hundreds of thousands of websites since last year. Researchers spotted RemoteMonologue - a new attack technique that abuses Windows’ DCOM to trigger NTLM authentication remotely, enabling lateral movement without ever dropping a payload on disk. It didn’t take long. Within hours of going public, a high-severity flaw in the OttoKit WordPress plugin was under active attack. Read on for more.