BackBox News
Latest news and insights on Security
- Threat actors leaked data stolen from EA, including FIFA codeby Pierluigi Paganini on July 31, 2021 at 8:50 pm
Threat actors that hacked Electronic Arts in June have leaked full data dump stolen from the company after the failure of the negotiation with the victim. In June, hackers have compromised the network of the gaming giant Electronic Arts (EA) and claimed to have stolen approximately 780 GB of data. […]
- SolarWinds hackers breached 27 state attorneys’ officesby Pierluigi Paganini on July 31, 2021 at 6:00 pm
Microsoft Office 365 email accounts of employees at 27 US Attorneys’ offices were breached by the Russia-linked SVR group as part of the SolarWinds hack, DoJ warns. The US Department of Justice revealed that the Microsoft Office 365 email accounts of employees at 27 US Attorneys’ offices […]
- Aqua Security: 97% unaware of crucial cloud native security principlesby VB Staff on July 31, 2021 at 1:21 pm
This finding indicates the difficulty and complexity of understanding key cloud native security risks, along with how to counteract them.
- Android Banking Trojan Vultur uses screen recording for credentials stealingby Pierluigi Paganini on July 31, 2021 at 5:12 am
Experts spotted a new strain of Android banking Trojan dubbed Vultur that uses screen recording and keylogging for the capturing of login credentials. ThreatFabric researchers discovered a new Android banking Trojan, tracked as Vultur, that uses screen recording and keylogging to capture login […]
- Ransomware attempt volume sets record, reaches more than 300 million for first half of 2021:...on July 30, 2021 at 11:17 pm
The US, UK, Germany, South Africa and Brazil topped the list of countries most impacted by ransomware attempts while states like Florida and New York struggled as well.
- Crooks using phony call centers to spread ransomware via BazaCall attacksby Deeba Ahmed on July 30, 2021 at 9:54 pm
By Deeba Ahmed In BazaCall, a "vishing-like" method is used in which victims are told to call a particular phone number or their subscription will expire. This is a post from HackRead.com Read the original post: Crooks using phony call centers to spread ransomware via BazaCall attacks
- 6 ways to protect your pharma company from cyberattacksby Louis Columbus on July 30, 2021 at 9:20 pm
What is the way forward for pharma cybersecurity in 2021? This pointed analysis shows the way, and offers six key recommendations.
- NSA Warns Public Networks are Hacker Hotbedsby Becky Bracken on July 30, 2021 at 9:06 pm
Agency warns attackers targeting teleworkers to steal corporate data.
- CVE-2021-3490 – Pwning Linux kernel eBPF on Ubuntu machinesby Pierluigi Paganini on July 30, 2021 at 5:46 pm
Researcher published an exploit code for a high-severity privilege escalation flaw (CVE-2021-3490) in Linux kernel eBPF on Ubuntu machines. The security researcher Manfred Paul of the RedRocket CTF team released the exploit code for a high-severity privilege escalation bug, tracked as […]
- Android Banking Trojan 'Vultur' Abusing Accessibility Servicesby Ionut Arghire on July 30, 2021 at 3:29 pm
A newly discovered Android banking Trojan relies on screen recording and keylogging instead of HTML overlays for the capturing of login credentials, according to security researchers at ThreatFabric. read more
Stories
- The Top 30 Vulnerabilities Include Plenty of Usual Suspectsby Brian Barrett on July 31, 2021 at 2:00 pm
Plus: A sneaky iOS app, a wiper attack in Iran, and more of the week’s top security news.
- This ethical hacking course could give your cybersecurity career a booston July 30, 2021 at 10:27 pm
Move up in the profitable field of cybersecurity by improving your ethical hacking skills.
- Create a VirtualBox virtual machine backup on a Linux host for securityon July 30, 2021 at 7:58 pm
Jack Wallen teaches you how to use simple bash scripts to automate backing up your VirtualBox VMs.
- Ransomware risk management: How to start preparing for the future nowon July 30, 2021 at 6:58 pm
TechRepublic's Karen Roby interviews Brandon Vigliarolo about how the ransomware risk management calculus is changing for OT, ICS and critical infrastructure.
- LemonDuck no longer settles for breadcrumbsby Pieter Arntz on July 30, 2021 at 5:19 pm
LemonDuck is a versatile botnet that has expanded from infecting targets with cryptominers to more malicious malware. Categories: Botnets Tags: C&Ccross-platformLemonCatLemonDuckLNKmalspamproxylogonrdpSMBssh (Read more...) The post LemonDuck no longer settles for breadcrumbs appeared first […]
Updated Packages: apktool, binwalk, bully, dirsearch, knockpy, sqlmap, wireshark https://t.co/qVJUW0YWxY
Exploit
- [webapps] Simple Student Information System 1.0 - SQL Injection (Authentication Bypass)
- [webapps] Blitar Tourism 1.0 - Authentication Bypass SQLi
- [webapps] ExpressVPN VPN Router 1.0 - Router Login Panel's Integer Overflow
- [remote] vsftpd 2.3.4 - Backdoor Command Execution
- [webapps] PrestaShop 1.7.6.7 - 'location' Blind Sql Injection
- [webapps] CMSimple 5.2 - 'External' Stored XSS
- [webapps] DMA Radius Manager 4.4.0 - Cross-Site Request Forgery (CSRF)
- [webapps] Composr 10.0.36 - Remote Code Execution
- [remote] Linux Kernel 5.4 - 'BleedingTooth' Bluetooth Zero-Click Remote Code Execution
- [webapps] Atlassian Jira Service Desk 4.9.1 - Unrestricted File Upload to XSS
Tools
- Ronin - A Ruby Platform For Vulnerability Research And Exploit Development
- Dwn - D(Ockerp)Wn - A Docker Pwn Tool Manager
- SYNwall - A Zero-Configuration (IoT) Firewall
- Cpufetch - Simplistic Yet Fancy CPU Architecture Fetching Tool
- AzureC2Relay - An Azure Function That Validates And Relays Cobalt Strike Beacon Traffic By Verifying The Incoming Requests Based On A Cobalt Strike Malleable C2 Profile