BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
[wp-rss-aggregator feeds="kitploit" limit="10" pagination="off"]
Exploit DB
[wp-rss-aggregator feeds="exploit-db" limit="10" pagination="off"]
Latest news and insights on Security
In Other News: MediSecure Hack, Scattered Spider Targeted by FBI, New Wi-Fi Attack
/in General NewsNoteworthy stories that might have slipped under the radar: FBI is targeting Scattered Spider, Australia’s MediSecure hacked, new Wi-Fi attack.
The post In Other News: MediSecure Hack, Scattered Spider Targeted by FBI, New Wi-Fi Attack appeared first on SecurityWeek.
SecurityWeek – Read More
OWASP Dep-Scan: Open-Source Security and Risk Audit Tool
/in General NewsOWASP dep-scan is an open-source security and risk assessment tool that analyzes project dependencies to identify vulnerabilities, licensing issues, and potential risks like dependency confusion attacks.
Cyware News – Latest Cyber News – Read More
Whose Data Is It Anyway? Equitable Access in Cybersecurity
/in General NewsCybersecurity cannot be solely about defending against threats; it must also empower organizations with their data.
darkreading – Read More
CISOs and Their Companies Struggle to Comply With SEC Disclosure Rules
/in General NewsMost companies still can’t determine whether a breach is material within the four days mandated by the SEC, skewing incident response.
darkreading – Read More
New UK System Will See ISPs Benefit From Same Protections as Government Networks
/in General NewsThe UK’s NCSC has launched a new “Share and Defend” system that will provide internet service providers with the same malicious domain blocklists used to protect government networks, helping to raise cybersecurity resilience across the country.
Cyware News – Latest Cyber News – Read More
Critical Flaw in AI Python Package Can Lead to System and Data Compromise
/in General NewsA critical vulnerability tracked as CVE-2024-34359 and dubbed Llama Drama can allow hackers to target AI product developers.
The post Critical Flaw in AI Python Package Can Lead to System and Data Compromise appeared first on SecurityWeek.
SecurityWeek – Read More
New XM Cyber Research: 80% of Exposures from Misconfigurations, Less Than 1% from CVEs
/in General NewsA new report from XM Cyber has found – among other insights – a dramatic gap between where most organizations focus their security efforts, and where the most serious threats actually reside.
The new report, Navigating the Paths of Risk: The State of Exposure Management in 2024, is based on hundreds of thousands of attack path assessments conducted by the XM Cyber
The Hacker News – Read More
China-Linked Hackers Adopt Two-Stage Infection Tactic to Deploy Deuterbear RAT
/in General NewsCybersecurity researchers have shed more light on a remote access trojan (RAT) known as Deuterbear used by the China-linked BlackTech hacking group as part of a cyber espionage campaign targeting the Asia-Pacific region this year.
“Deuterbear, while similar to Waterbear in many ways, shows advancements in capabilities such as including support for shellcode plugins, avoiding handshakes
The Hacker News – Read More
Black Basta Ransomware Struck More Than 500 Organizations Worldwide
/in General NewsRead about Black Basta ransomware’s impact and how to mitigate it. Plus, learn about recent ransomware trends.
Security | TechRepublic – Read More
CISA Warns of Exploited Vulnerabilities in EOL D-Link Products
/in General NewsCISA has added two vulnerabilities in discontinued D-Link products to its KEV catalog, including a decade-old flaw.
The post CISA Warns of Exploited Vulnerabilities in EOL D-Link Products appeared first on SecurityWeek.
SecurityWeek – Read More