BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
[wp-rss-aggregator feeds="kitploit" limit="10" pagination="off"]
Exploit DB
[wp-rss-aggregator feeds="exploit-db" limit="10" pagination="off"]
Latest news and insights on Security
Hackers Exploit Critical Langflow Flaw to Unleash Flodrix Botnet
/in General NewsA vulnerability in the popular Python-based tool for building AI agents and workflows is under active exploitation, allowing for full system compromise, DDoS attacks, and potential loss or theft of sensitive data
darkreading – Read More
US Insurance Industry Warned of Scattered Spider Attacks
/in General NewsGoogle is warning insurance companies that Scattered Spider appears to have shifted its focus from the retail sector.
The post US Insurance Industry Warned of Scattered Spider Attacks appeared first on SecurityWeek.
SecurityWeek – Read More
Circumvent Raises $6 Million for Cloud Security Platform
/in General NewsCloud security startup Circumvent has raised $6 million to develop a network of agents for autonomous prioritization and remediation.
The post Circumvent Raises $6 Million for Cloud Security Platform appeared first on SecurityWeek.
SecurityWeek – Read More
Pro-Israel hackers claim breach of Iranian bank amid military escalation
/in General NewsA group tracked as Predatory Sparrow said it was responsible for hacking Bank Sepah as the conflict between Israel and Iran intensified.
The Record from Recorded Future News – Read More
Zoomcar Data Breach Exposes Personal Info of 8.4 Million Users
/in General NewsZoomcar confirms 2025 breach affecting 8.4M users, echoing its 2018 data leak. Personal info exposed, financial data safe, investigation ongoing.
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
New Flodrix Botnet Variant Exploits Langflow AI Server RCE Bug to Launch DDoS Attacks
/in General NewsCybersecurity researchers have called attention to a new campaign that’s actively exploiting a recently disclosed critical security flaw in Langflow to deliver the Flodrix botnet malware.
“Attackers use the vulnerability to execute downloader scripts on compromised Langflow servers, which in turn fetch and install the Flodrix malware,” Trend Micro researchers Aliakbar Zahravi, Ahmed Mohamed
The Hacker News – Read More
Organizations Warned of Vulnerability Exploited Against Discontinued TP-Link Routers
/in General NewsCISA warns that a vulnerability impacting multiple discontinued TP-Link router models is exploited in the wild.
The post Organizations Warned of Vulnerability Exploited Against Discontinued TP-Link Routers appeared first on SecurityWeek.
SecurityWeek – Read More
TP-Link Router Flaw CVE-2023-33538 Under Active Exploit, CISA Issues Immediate Alert
/in General NewsThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a high-severity security flaw in TP-Link wireless routers to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation.
The vulnerability in question is CVE-2023-33538 (CVSS score: 8.8), a command injection bug that could result in the execution of arbitrary system commands when
The Hacker News – Read More
Asus Armoury Crate Vulnerability Leads to Full System Compromise
/in General NewsA high-severity authorization bypass vulnerability in Asus Armoury Crate provides attackers with low-level system privileges.
The post Asus Armoury Crate Vulnerability Leads to Full System Compromise appeared first on SecurityWeek.
SecurityWeek – Read More
Recent Langflow Vulnerability Exploited by Flodrix Botnet
/in General NewsA critical Langflow vulnerability tracked as CVE-2025-3248 has been exploited to ensnare devices in the Flodrix botnet.
The post Recent Langflow Vulnerability Exploited by Flodrix Botnet appeared first on SecurityWeek.
SecurityWeek – Read More