BackBox News
Latest news and insights on Security
- Kyiv blames Belarus-linked APT UNC1151 for recent cyberattackby Pierluigi Paganini on January 17, 2022 at 8:31 am
Ukrainian government attributes the recent attacks against tens of Ukrainian government websites to Belarusian APT group UNC1151. The government of Kyiv attributes the defacement of tens of Ukrainian government websites to Belarusian APT group UNC1151, the Reuters agency reported in exclusive. […]
- Dark Web's Largest Marketplace for Stolen Credit Cards is Shutting Downby noreply@blogger.com (Ravie Lakshmanan) on January 17, 2022 at 8:08 am
UniCC, the biggest dark web marketplace of stolen credit and debit cards, has announced that it's shuttering its operations after earning $358 million in purchases since 2013 using cryptocurrencies such as Bitcoin, Litecoin, Ether, and Dash. "Don't build any conspiracy theories about us leaving," […]
- High-Severity Vulnerability in 3 WordPress Plugins Affected 84,000 Websitesby noreply@blogger.com (Ravie Lakshmanan) on January 17, 2022 at 5:18 am
Researchers have disclosed a security shortcoming affecting three different WordPress plugins that impact over 84,000 websites and could be abused by a malicious actor to take over vulnerable sites. "This flaw made it possible for an attacker to update arbitrary site options on a vulnerable site, […]
- Ukrainian Government Officially Accuses Russia of Recent Cyberattacksby noreply@blogger.com (Ravie Lakshmanan) on January 17, 2022 at 4:29 am
The government of Ukraine on Sunday formally accused Russia of masterminding the attacks that targeted websites of public institutions and government agencies this past week. "All the evidence points to the fact that Russia is behind the cyber attack," the Ministry of Digital […]
- A New Destructive Malware Targeting Ukrainian Government and Business Entitiesby noreply@blogger.com (Ravie Lakshmanan) on January 17, 2022 at 3:34 am
Cybersecurity teams from Microsoft on Saturday disclosed they identified evidence of a new destructive malware operation dubbed "WhisperGate" targeting government, non-profit, and information technology entities in Ukraine amid brewing geopolitical tensions between the country and Russia. "The […]
- New Unpatched Apple Safari Browser Bug Allows Cross-Site User Trackingby noreply@blogger.com (Ravie Lakshmanan) on January 17, 2022 at 3:34 am
A software bug introduced in Apple Safari 15's implementation of the IndexedDB API could be abused by a malicious website to track users' online activity in the web browser and worse, even reveal their identity. The vulnerability, dubbed IndexedDB Leaks, was disclosed by fraud protection software […]
- 3 ways to improve your website securityby Owais Sultan on January 17, 2022 at 1:05 am
By Owais Sultan Every so often, you hear in the news that a company’s website was down temporarily for several hours,… This is a post from HackRead.com Read the original post: 3 ways to improve your website security
- For security alone, we could try paying open source projects properlyon January 16, 2022 at 10:00 pm
Instead of running around like headless chooks because a widely used piece of open source software is maintained by volunteers and has a massive hole in it, imagine paying someone to look after such software properly.
- Microsoft says 'destructive malware' being used against Ukrainian organizationson January 16, 2022 at 9:33 pm
Security teams at Microsoft said the malware first appeared on victim systems in Ukraine on January 13.
- Microsoft Uncovers Destructive Malware Used in Ukraine Cyberattacksby Mike Lennon on January 16, 2022 at 9:06 pm
Newly detected WhisperGate malware being used by previously unknown threat group in cyberattacks against Ukraine read more
Stories
- Destructive Hacks Against Ukraine Echo Its Last Cyberwarby Andy Greenberg on January 16, 2022 at 3:02 pm
A data wiper posing as ransomware bears a discomfiting resemblance to the earlier wave of Russian cyberattacks that ended with NotPetya.
- How Apple's iCloud Private Relay Can Keep You Safeby David Nield on January 16, 2022 at 1:00 pm
The newest security measure is still in beta. But if you want to make use of it, here's what you need to know.
- A Teen Took Control of Teslas by Hacking a Third-Party Appby Brian Barrett on January 15, 2022 at 2:29 pm
Plus: Open source sabotage, Ukrainian website hacks, and more of the week's top security news.
- Russia arrests REvil ransomware gang members at request of US officialson January 14, 2022 at 6:54 pm
Russia's Federal Security Service said that 14 people were arrested and millions in currency has been seized.
- Russia Takes Down REvil Hackers—as Ukraine Tensions Mountby Matt Burgess, Lily Hay Newman on January 14, 2022 at 6:17 pm
Over a dozen alleged members of the notorious ransomware group have been arrested, but the Kremlin's critics are wary of the underlying motivation.
Updated Packages: ettercap, wireshark https://t.co/BADkmZZHlG
Updated Packages: apktool, binwalk, bully, dirsearch, knockpy, sqlmap, wireshark https://t.co/qVJUW0YWxY
Exploit
- [webapps] Online Learning System 2.0 - Remote Code Execution (RCE)
- [webapps] CMDBuild 3.3.2 - 'Multiple' Cross Site Scripting (XSS)
- [webapps] WordPress Plugin WPSchoolPress 2.1.16 - 'Multiple' Cross Site Scripting (XSS)
- [webapps] KONGA 0.14.9 - Privilege Escalation
- [webapps] Simple Subscription Website 1.0 - SQLi Authentication Bypass
- [webapps] Fuel CMS 1.4.13 - 'col' Blind SQL Injection (Authenticated)
- [webapps] WordPress Plugin Contact Form to Email 1.3.24 - Stored Cross Site Scripting (XSS) (Authenticated)
- [webapps] PHP Laravel 8.70.1 - Cross Site Scripting (XSS) to Cross Site Request Forgery (CSRF)
- [webapps] WordPress Plugin AccessPress Social Icons 1.8.2 - 'icon title' Stored Cross-Site Scripting (XSS)
- [dos] Xlight FTP 3.9.3.1 - Buffer Overflow (PoC)
Tools
- Fhex - A Full-Featured HexEditor
- EXOCET - AV-evading, Undetectable, Payload Delivery Tool
- Cumulus - Web Application Weakness Monitoring, It Would Be Working By Add Just 3 Codelines
- Clash - A Rule-Based Tunnel In Go
- ChopChop - ChopChop Is A CLI To Help Developers Scanning Endpoints And Identifying Exposition Of Sensitive Services/Files/Folders