BackBox News
Latest news and insights on Security
-
Malvertising campaign exploits recently disclosed WordPress Plugin flaws
by Pierluigi Paganini on July 24, 2019 at 7:25 am
Experts at Defiant have uncovered a campaign that exploited recently disclosed plugin vulnerabilities to inject malware into websites. Experts at Defiant, the company that developed the Wordfence security plugin for WordPress, uncovered a malvertising campaign that leverages recently disclosed […]
-
Citrix Completes Investigation into Data Breach
by Eduard Kovacs on July 24, 2019 at 5:57 am
Software giant Citrix on Tuesday announced that it has completed its investigation into the data breach detected earlier this year. read mor […]
-
Indiana County Targeted in Malware Assault on Computers
by Associated Press on July 24, 2019 at 5:04 am
Officials of an Indiana county say they are trying to determine the extent of a malware attack on the county’s computers. Vigo County Commissioner Judith Anderson says commissioners were informed of a “ransomware” attack early Tuesday. read mor […]
-
China-Linked APT15 group is using a previously undocumented backdoor
by Pierluigi Paganini on July 24, 2019 at 3:07 am
ESET researchers reported that China-linked cyberespionage group APT15 has been using a previously undocumented backdoor for more than two years. Security researchers at ESET reported that China-linked threat actor APT15 (aka Ke3chang, Mirage, Vixen Panda, Royal APT and Playful Dragon) has been […]
-
TikTok opens Indian data centre in wake of accusations of hosting pornographers and sexual predators
on July 24, 2019 at 2:45 am
India has become TikTok's most prized and fastest growing market and one that it cannot afford to lose, hence the announcement that it will set up a local data centre. […]
-
Dutton defends metadata protections, claims consequences exist for breaches
on July 24, 2019 at 2:07 am
Minister for Home Affairs also takes opportunity to try to scare the population. […]
-
Australia Post a 'trusted' service provider for government identification
on July 24, 2019 at 1:30 am
The postal service joins myGovID as an accredited trusted identity service provider. […]
-
Windows zero-days don't usually work against the latest OS version
on July 23, 2019 at 11:33 pm
MSRC engineer: Since 2015, only 40% of zero-days were successfully used against the latest Windows versions. […]
-
Four Arrested Over Hacking of Brazil Justice Minister's Phone
by AFP on July 23, 2019 at 11:12 pm
Brazilian federal police arrested four people Tuesday over the hacking of cell phones belonging to Justice Minister Sergio Moro and prosecutors involved in a massive corruption probe. read mor […]
-
New IPS Architecture Uses Network Flow Data for Analysis
by Curtis Franklin Jr. Senior Editor at Dark Reading on July 23, 2019 at 10:00 pm
Can a stream of data intended for network performance monitoring be the basis of network security? One company says the answer is 'yes.' […]
Stories
-
Before Mueller’s Testimony, Dems Demand More Election Security
by Matt Laslo on July 24, 2019 at 1:32 am
Senate Democrats want to remind everyone that US elections are still at risk, and Congress could do more to protect them. […]
-
A Preview of Mueller's Testimony, an Electric Ford F-150, and More News
by Alex Baker-Whitcomb on July 23, 2019 at 10:18 pm
Catch up on the most important news from today in two minutes or less. […]
-
SharePoint Online scam – sadly, phishing’s not dead
by Paul Ducklin on July 23, 2019 at 5:02 pm
Not all phishes contain easily spotted errors or obviously dodgy web links - here's how to stay safe... […]
-
Getting rid of browser notifications
by Leonid Grustniy on July 23, 2019 at 3:44 pm
We explain how not to drown in the stream of annoying browser push notifications — or even kiss them goodbye. […]
-
How risk management can help secure industrial IoT and big data
on July 23, 2019 at 2:24 pm
Read about approaches your company can take to manage IoT and big data cyber risks. […]
Exploit
- [dos] BACnet Stack 0.8.6 - Denial of Service
- [local] Comtrend-AR-5310 - Restricted Shell Escape
- [webapps] Axway SecureTransport 5 - Unauthenticated XML Injection
- [webapps] Web Ofisi Rent a Car 3 - 'klima' SQL Injection
- [webapps] REDCap < 9.1.2 - Cross-Site Scripting
- [local] Docker - Container Escape
- [remote] MAPLE Computer WBT SNMP Administrator 2.0.195.15 - Remote Buffer Overflow (EggHunter)
- [webapps] fuelCMS 1.4.1 - Remote Code Execution
- [webapps] Web Ofisi E-Ticaret 3 - 'a' SQL Injection
- [webapps] Web Ofisi Emlak 3 - 'emlak_durumu' SQL Injection
Tools
- VulnWhisperer - Create Actionable Data From Your Vulnerability Scans
- Dockernymous - A Script Used To Create A Whonix Like Gateway/Workstation Environment With Docker Containers
- HiddenEye - Modern Phishing Tool With Advanced Functionality (Android-Support-Available)
- SUDO_KILLER - A Tool To Identify And Exploit Sudo Rules Misconfigurations And Vulnerabilities Within Sudo
- Hvazard - Remove Short Passwords & Duplicates, Change Lowercase To Uppercase & Reverse, Combine Wordlists!