BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
Androxgh0st Malware Compromises Servers Worldwide for Botnet Attack
/in General NewsBy Deeba Ahmed
Veriti Research exposes surge in Androxgh0st attacks, exploiting CVEs and building botnets for credential theft. Patch systems, monitor for web shells, and use behavioral analysis to protect yourself.
This is a post from HackRead.com Read the original post: Androxgh0st Malware Compromises Servers Worldwide for Botnet Attack
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
New RedLine Stealer Variant Disguised as Game Cheats Using Lua Bytecode for Stealth
/in General NewsA new information stealer has been found leveraging Lua bytecode for added stealth and sophistication, findings from McAfee Labs reveal.
The cybersecurity firm has assessed it to be a variant of a known malware called RedLine Stealer owing to the fact that the command-and-control (C2) server IP address has been previously identified as associated with the malware.
RedLine Stealer, 
The Hacker News – Read More
AI-Controlled Fighter Jets Are Dogfighting With Human Pilots Now
/in General NewsPlus: New York’s legislature suffers a cyberattack, police disrupt a global phishing operation, and Apple removes encrypted messaging apps in China.
Security Latest – Read More
CrushFTP Warns Users to Patch Exploited Zero-Day “Immediately”
/in General NewsAs the company also explains in a public security advisory published on Friday, this zero-day bug enables unauthenticated attackers to escape the user’s virtual file system (VFS) and download system files.
Cyware News – Latest Cyber News – Read More
Critical Update: CrushFTP Zero-Day Flaw Exploited in Targeted Attacks
/in General NewsUsers of the CrushFTP enterprise file transfer software are being urged to update to the latest version following the discovery of a security flaw that has come under targeted exploitation in the wild.
“CrushFTP v11 versions below 11.1 have a vulnerability where users can escape their VFS and download system files,” CrushFTP said in an advisory released Friday.
The Hacker News – Read More
Palo Alto Networks Discloses More Details on Critical PAN-OS Flaw Under Attack
/in General NewsPalo Alto Networks has shared more details of a critical security flaw impacting PAN-OS that has come under active exploitation in the wild by malicious actors.
The company described the vulnerability, tracked as CVE-2024-3400 (CVSS score: 10.0), as “intricate” and a combination of two bugs in versions PAN-OS 10.2, PAN-OS 11.0, and PAN-OS 11.1 of the software.
“In
The Hacker News – Read More
CISO Corner: Breaking Staff Burnout, GPT-4 Exploits, Rebalancing NIST
/in General NewsSecOps highlights this week include the executive role in “cyber readiness;” Cisco’s Hypershield promise; and Middle East cyber ops heat up.
darkreading – Read More
FBI Director Wray Issues Dire Warning on China’s Cybersecurity Threat
/in General NewsChinese actors are ready and poised to do “devastating” damage to key US infrastructure services if needed, he said.
darkreading – Read More
Miggo Launches Application Detection and Response (ADR) Solution
/in General NewsPost Content
darkreading – Read More
Breakthrough in Quantum Cloud Computing Ensures its Security and Privacy
/in General NewsOxford University researchers used an approach dubbed “blind quantum computing” to connect two quantum computing entities in a way that is completely secure.
Security | TechRepublic – Read More