https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-04-23 21:06:432024-04-23 21:06:43CompTIA Supports Department of Defense Efforts to Strengthen Cyber Knowledge and Skills
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-04-23 21:06:432024-04-23 21:06:435 Hard Truths About the State of Cloud Security 2024
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-04-23 21:06:432024-04-23 21:06:43Siemens Working on Fix for Device Affected by Palo Alto Firewall Bug
The website Spy.pet has been involved in a major privacy breach, selling billions of private messages from Discord users. This breach exposes personal information, private photos, financial details, and potentially company secrets.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-04-23 20:06:422024-04-23 20:06:42This Website is Selling Billions of Private Messages of Discord Users
A notorious Russian APT group has been stealing credentials for years by exploiting a Windows Print Spooler bug and using a novel post-compromise tool known as “GooseEgg,” Microsoft has revealed.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-04-23 19:09:292024-04-23 19:09:29Russian APT28 Group in New “GooseEgg” Hacking Campaign
In a move away from traditional phishing scams, attackers are increasingly exploiting vulnerabilities in computer systems to gain initial network access, according to Mandiant’s M-Trends 2024 Report.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-04-23 19:09:282024-04-23 19:09:28Vulnerability Exploitation on the Rise as Attackers Ditch Phishing
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-04-23 19:09:282024-04-23 19:09:28$10 Million Bounty on Iranian Hackers for Cyber Attacks on US Gov, Defense Contractors
The GuptiMiner malware campaign, discovered by Avast, involved hijacking an eScan antivirus update mechanism to distribute backdoors and coinminers. The campaign was orchestrated by a threat actor with possible ties to Kimsuky.
BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
CompTIA Supports Department of Defense Efforts to Strengthen Cyber Knowledge and Skills
/in General NewsPost Content
darkreading – Read More
5 Hard Truths About the State of Cloud Security 2024
/in General NewsDark Reading talks cloud security with John Kindervag, the godfather of zero trust.
darkreading – Read More
Siemens Working on Fix for Device Affected by Palo Alto Firewall Bug
/in General NewsGrowing attacks targeting the flaw prompted CISA to include it in the known exploited vulnerabilities catalog earlier this month.
darkreading – Read More
Hackers Create Legit Phishing Links With Ghost GitHub, GitLab Comments
/in General NewsAn utterly innocuous feature in popular Git CDNs allows anyone to conceal malware behind brand names, without those brands being any the wiser.
darkreading – Read More
This Website is Selling Billions of Private Messages of Discord Users
/in General NewsThe website Spy.pet has been involved in a major privacy breach, selling billions of private messages from Discord users. This breach exposes personal information, private photos, financial details, and potentially company secrets.
Cyware News – Latest Cyber News – Read More
Russian APT28 Group in New “GooseEgg” Hacking Campaign
/in General NewsA notorious Russian APT group has been stealing credentials for years by exploiting a Windows Print Spooler bug and using a novel post-compromise tool known as “GooseEgg,” Microsoft has revealed.
Cyware News – Latest Cyber News – Read More
Vulnerability Exploitation on the Rise as Attackers Ditch Phishing
/in General NewsIn a move away from traditional phishing scams, attackers are increasingly exploiting vulnerabilities in computer systems to gain initial network access, according to Mandiant’s M-Trends 2024 Report.
Cyware News – Latest Cyber News – Read More
$10 Million Bounty on Iranian Hackers for Cyber Attacks on US Gov, Defense Contractors
/in General NewsFour Iranians are accused of hacking into critical systems at the Departments of Treasury and State and dozens of private US companies.
The post $10 Million Bounty on Iranian Hackers for Cyber Attacks on US Gov, Defense Contractors appeared first on SecurityWeek.
SecurityWeek – Read More
Back from the Brink: UnitedHealth Offers Sobering Post-Attack Update
/in General NewsThe company reports most systems are functioning again but that analysis of the data affected will take months to complete.
darkreading – Read More
GuptiMiner: Hijacking Antivirus Updates for Distributing Backdoors and Casual Mining
/in General NewsThe GuptiMiner malware campaign, discovered by Avast, involved hijacking an eScan antivirus update mechanism to distribute backdoors and coinminers. The campaign was orchestrated by a threat actor with possible ties to Kimsuky.
Cyware News – Latest Cyber News – Read More