BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
[wp-rss-aggregator feeds="kitploit" limit="10" pagination="off"]
Exploit DB
[wp-rss-aggregator feeds="exploit-db" limit="10" pagination="off"]
Latest news and insights on Security
Iran-Linked Hackers Breach FBI Director’s Personal Email, Hit Stryker With Wiper Attack
/in General NewsThreat actors with ties to Iran successfully broke into the personal email account of Kash Patel, the director of the U.S. Federal Bureau of Investigation (FBI), and leaked a cache of photos and other documents to the internet.
Handala Hack Team, which carried out the breach, said on its website that Patel “will now find his name among the list of successfully hacked victims.” In a statement
The Hacker News – Read More
Cloudflare-Themed ClickFix Attack Drops Infiniti Stealer on Macs
/in General NewsThe infection chain includes a fake CAPTCHA page, a Bash script, a Nuitka loader, and the Python-based infostealer.
The post Cloudflare-Themed ClickFix Attack Drops Infiniti Stealer on Macs appeared first on SecurityWeek.
SecurityWeek – Read More
Citrix NetScaler Under Active Recon for CVE-2026-3055 (CVSS 9.3) Memory Overread Bug
/in General NewsA recently disclosed critical security flaw impacting Citrix NetScaler ADC and NetScaler Gateway is witnessing active reconnaissance activity, according to Defused Cyber and watchTowr.
The vulnerability, CVE-2026-3055 (CVSS score: 9.3), refers to a case of insufficient input validation leading to memory overread, which an attacker could exploit to leak potentially sensitive information.
Per
The Hacker News – Read More
CISA Adds CVE-2025-53521 to KEV After Active F5 BIG-IP APM Exploitation
/in General NewsThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added a critical security flaw impacting F5 BIG-IP Access Policy Manager (APM) to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation.
The vulnerability in question is CVE-2025-53521 (CVSS v4 score: 9.3), which could allow a threat actor to achieve remote code execution.
“When a
The Hacker News – Read More
TA446 Deploys Leaked DarkSword iOS Exploit Kit in Targeted Spear-Phishing Campaign
/in General NewsProofpoint has disclosed details of a targeted email campaign in which threat actors with ties to Russia are leveraging the recently disclosed DarkSword exploit kit to target iOS devices.
The activity has been attributed with high confidence to the Russian state-sponsored threat group known as TA446, which is also tracked by the broader cybersecurity community under the monikers Callisto,
The Hacker News – Read More
Iran-Linked Handala Hackers Breach FBI Chief Kash Patel’s Gmail
/in General NewsIran-linked Handala hackers breached FBI Chief Kash Patel’s Gmail, leaking photos and documents. Officials say no classified data was exposed.
Hackread – Cybersecurity News, Data Breaches, AI and More – Read More
ShinyHunters Walk Away from BreachForums, Leak 300,000-User Database
/in General NewsShinyHunters leaves BreachForums, leaks data of 300,000 users, warns all active domains are fake, and threatens more leaks from forum backups.
Hackread – Cybersecurity News, Data Breaches, AI and More – Read More
These RayNeo XR glasses effectively replaced my TV with HDR support – and they’re on sale
/in General NewsThe RayNeo Air 4 Pro make for a great first pair of XR glasses, based on our tests. And they just got their first big discount.
Latest news – Read More
I’ve tested every MacBook Air in recent years – here’s why the time to upgrade is now
/in General NewsThe MacBook Air M5 marks a logical upgrade point for older Mac users or PC refugees ditching Windows.
Latest news – Read More
These 20 award-winning tech products are on sale (but we’d pay full price)
/in General NewsSome ZDNET-approved, award-winning tech is on sale during Amazon’s Big Spring Sale. Don’t miss these offers on products we love.
Latest news – Read More