BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
[wp-rss-aggregator feeds="kitploit" limit="10" pagination="off"]
Exploit DB
[wp-rss-aggregator feeds="exploit-db" limit="10" pagination="off"]
Latest news and insights on Security
Godfather Android Trojan Creates Sandbox on Infected Devices
/in General NewsThe Godfather Android trojan uses on-device virtualization to hijack legitimate applications and steal users’ funds.
The post Godfather Android Trojan Creates Sandbox on Infected Devices appeared first on SecurityWeek.
SecurityWeek – Read More
Motors Theme Vulnerability Exploited to Hack WordPress Websites
/in General NewsThreat actors are exploiting a critical-severity vulnerability in Motors theme for WordPress to change arbitrary user passwords.
The post Motors Theme Vulnerability Exploited to Hack WordPress Websites appeared first on SecurityWeek.
SecurityWeek – Read More
New Mocha Manakin Malware Deploys NodeInitRAT via Clickfix Attack
/in General NewsRed Canary uncovers ‘Mocha Manakin,’ a new threat using paste and runs to deliver custom NodeInitRAT malware, potentially leading to ransomware. Learn to protect your systems.
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
FreeType Zero-Day Found by Meta Exploited in Paragon Spyware Attacks
/in General NewsWhatsApp told SecurityWeek that it linked the exploited FreeType vulnerability CVE-2025-27363 to a Paragon exploit.
The post FreeType Zero-Day Found by Meta Exploited in Paragon Spyware Attacks appeared first on SecurityWeek.
SecurityWeek – Read More
Cloudflare Tunnels Abused in New Malware Campaign
/in General NewsA threat actor is abusing Cloudflare Tunnels for the delivery of a Python loader as part of a complex infection chain.
The post Cloudflare Tunnels Abused in New Malware Campaign appeared first on SecurityWeek.
SecurityWeek – Read More
161,000 People Impacted by Krispy Kreme Data Breach
/in General NewsKrispy Kreme is sharing more information on the data breach resulting from the ransomware attack targeting the company in 2024.
The post 161,000 People Impacted by Krispy Kreme Data Breach appeared first on SecurityWeek.
SecurityWeek – Read More
67 Trojanized GitHub Repositories Found in Campaign Targeting Gamers and Developers
/in General NewsCybersecurity researchers have uncovered a new campaign in which the threat actors have published more than 67 GitHub repositories that claim to offer Python-based hacking tools, but deliver trojanized payloads instead.
The activity, codenamed Banana Squad by ReversingLabs, is assessed to be a continuation of a rogue Python campaign that was identified in 2023 as targeting the Python Package
The Hacker News – Read More
Hackers Access Legacy Systems in Oxford City Council Cyberattack
/in General NewsPersonal data of former and current council workers, including election staff, may have been accessed by hackers.
The post Hackers Access Legacy Systems in Oxford City Council Cyberattack appeared first on SecurityWeek.
SecurityWeek – Read More
Banana Squad Hides Data-Stealing Malware in Fake GitHub Repositories
/in General NewsBanana Squad hid data-stealing malware in fake GitHub repos posing as Python tools, tricking users and targeting sensitive info like browser and wallet data.
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
New Android Malware Surge Hits Devices via Overlays, Virtualization Fraud and NFC Theft
/in General NewsCybersecurity researchers have exposed the inner workings of an Android malware called AntiDot that has compromised over 3,775 devices as part of 273 unique campaigns.
“Operated by the financially motivated threat actor LARVA-398, AntiDot is actively sold as a Malware-as-a-Service (MaaS) on underground forums and has been linked to a wide range of mobile campaigns,” PRODAFT said in a report
The Hacker News – Read More