BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
No feed items found.
Exploit DB
- [webapps] XWiki Standard 14.10 - Remote Code Execution (RCE)
- [local] Solstice Pod 6.2 - API Session Key Extraction via API Endpoint
- [webapps] CodeCanyon RISE CRM 3.7.0 - SQL Injection
- [webapps] Litespeed Cache 6.5.0.1 - Authentication Bypass
- [webapps] Sonatype Nexus Repository 3.53.0-01 - Path Traversal
- [webapps] Rejetto HTTP File Server 2.3m - Remote Code Execution (RCE)
- [webapps] Progress Telerik Report Server 2024 Q1 (10.0.24.305) - Authentication Bypass
- [webapps] MoziloCMS 3.0 - Remote Code Execution (RCE)
- [webapps] KubeSphere 3.4.0 - Insecure Direct Object Reference (IDOR)
- [webapps] X2CRM 8.5 - Stored Cross-Site Scripting (XSS)
Rhysida Ransomware Group Hacked Abdali Hospital in Jordan
/in General NewsThe Rhysida ransomware group has claimed responsibility for hacking Abdali Hospital in Jordan. The group has published proof of the hack, including stolen documents, and is now auctioning off the sensitive data for 10 BTC.
Cyware News – Latest Cyber News – Read More
This Clever New Idea Could Fix AirTag Stalking While Maximizing Privacy
/in General NewsApple updated its location-tracking system in an attempt to cut down on AirTag abuse while still preserving privacy. Researchers think they’ve found a better balance.
Security Latest – Read More
Hackers Steal Customer Data From Europe’s Largest Parking App Operator
/in General NewsEasyPark Group, the owner of brands including RingGo and ParkMobile, said customer names, phone numbers, addresses, email addresses, and parts of credit card numbers had been taken but said parking data had not been compromised in the cyberattack.
Cyware News – Latest Cyber News – Read More
Chinese Hackers Deliver Malware to Barracuda Email Security Appliances via New Zero-Day
/in General NewsChinese hackers exploited a zero-day tracked as CVE-2023-7102 to deliver malware to Barracuda Email Security Gateway (ESG) appliances.
The post Chinese Hackers Deliver Malware to Barracuda Email Security Appliances via New Zero-Day appeared first on SecurityWeek.
SecurityWeek – Read More
Poorly Secured Linux SSH Servers Under Attack for Cryptocurrency Mining
/in General NewsLinux SSH servers with poor security are being targeted by cybercriminals to install port scanners and dictionary attack tools. The attackers aim to compromise other vulnerable servers and use them for cryptocurrency mining and DDoS attacks.
Cyware News – Latest Cyber News – Read More
LockBit Gang Claims to Have Breached Accountancy Firm Xeinadin
/in General NewsThe LockBit ransomware group has targeted Xeinadin, an accountancy firm with over 60,000 clients, and threatens to leak 1.5 terabytes of stolen customer data if not contacted by the company.
Cyware News – Latest Cyber News – Read More
AI moves from theory to practice, zero trust gets real, and other 2024 predictions from Dell CTO
/in General NewsWhat does 2024 have in store? Improved gen AI ecosystems, next-level security, ‘common edge’ — plus, how quantum will support AI.Read More
Security News | VentureBeat – Read More
Warning: Poorly Secured Linux SSH Servers Under Attack for Cryptocurrency Mining
/in General NewsPoorly secured Linux SSH servers are being targeted by bad actors to install port scanners and dictionary attack tools with the goal of targeting other vulnerable servers and co-opting them into a network to carry out cryptocurrency mining and distributed denial-of-service (DDoS) attacks.
“Threat actors can also choose to install only scanners and sell the breached IP and account credentials on
The Hacker News – Read More
RingGo, ParkMobile Owner EasyPark Suffers Data Breach, User Data Stolen
/in General NewsBy Waqas
ParkMobile, a globally-used parking app, is the same platform that suffered a massive data breach in 2021 when hackers leaked the data of 21 million customers.
This is a post from HackRead.com Read the original post: RingGo, ParkMobile Owner EasyPark Suffers Data Breach, User Data Stolen
Hackread – Latest Cybersecurity News, Press Releases & Technology Today – Read More
North Korea APT Slapped With Cyber Sanctions After Satellite Launch
/in General NewsSanctions on Kimsuky/APT43 focuses the world on disrupting DPRK regime’s sprawling cybercrime operations, expert says.
darkreading – Read More