BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
[wp-rss-aggregator feeds="kitploit" limit="10" pagination="off"]
Exploit DB
[wp-rss-aggregator feeds="exploit-db" limit="10" pagination="off"]
Latest news and insights on Security
Ransomware Gangs Exploit Unpatched SimpleHelp Flaws to Target Victims with Double Extortion
/in General NewsThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday disclosed that ransomware actors are targeting unpatched SimpleHelp Remote Monitoring and Management (RMM) instances to compromise customers of an unnamed utility billing software provider.
“This incident reflects a broader pattern of ransomware actors targeting organizations through unpatched versions of SimpleHelp
The Hacker News – Read More
Industry Reactions to Trump Cybersecurity Executive Order: Feedback Friday
/in General NewsIndustry professionals comment on the Trump administration’s new executive order on cybersecurity.
The post Industry Reactions to Trump Cybersecurity Executive Order: Feedback Friday appeared first on SecurityWeek.
SecurityWeek – Read More
SimpleHelp Vulnerability Exploited Against Utility Billing Software Users
/in General NewsCISA warns that vulnerable SimpleHelp RMM instances have been exploited against a utility billing software provider’s customers.
The post SimpleHelp Vulnerability Exploited Against Utility Billing Software Users appeared first on SecurityWeek.
SecurityWeek – Read More
Fog Ransomware Attack Employs Unusual Tools
/in General NewsMultiple legitimate, unusual tools were used in a Fog ransomware attack, including one employed by Chinese hacking group APT41.
The post Fog Ransomware Attack Employs Unusual Tools appeared first on SecurityWeek.
SecurityWeek – Read More
Critical Vulnerability Exposes Many Mitel MiCollab Instances to Remote Hacking
/in General NewsMitel has announced patches for a MiCollab path traversal vulnerability that can be exploited remotely without authentication.
The post Critical Vulnerability Exposes Many Mitel MiCollab Instances to Remote Hacking appeared first on SecurityWeek.
SecurityWeek – Read More
Apple Zero-Click Flaw in Messages Exploited to Spy on Journalists Using Paragon Spyware
/in General NewsApple has disclosed that a now-patched security flaw present in its Messages app was actively exploited in the wild to target civil society members in sophisticated cyber attacks.
The vulnerability, tracked as CVE-2025-43200, was addressed on February 10, 2025, as part of iOS 18.3.1, iPadOS 18.3.1, iPadOS 17.7.5, macOS Sequoia 15.3.1, macOS Sonoma 14.7.4, macOS Ventura 13.7.4, watchOS 11.3.1,
The Hacker News – Read More
Critical Vulnerabilities Patched in Trend Micro Apex Central, Endpoint Encryption
/in General NewsTrend Micro patches critical-severity Apex Central and Endpoint Encryption PolicyServer flaws leading to remote code execution.
The post Critical Vulnerabilities Patched in Trend Micro Apex Central, Endpoint Encryption appeared first on SecurityWeek.
SecurityWeek – Read More
ZeroRISC Raises $10 Million for Open Source Silicon Security Solutions
/in General NewsZeroRISC has raised $10 million in seed funding for production-grade open source silicon security, built on OpenTitan designs.
The post ZeroRISC Raises $10 Million for Open Source Silicon Security Solutions appeared first on SecurityWeek.
SecurityWeek – Read More
New COPPA Rules to Take Effect Over Child Data Privacy Concerns
/in General NewsNew regulations and compliance standards for the Children’s Online Privacy Protection Act reflect how much technology has grown since the Federal Trade Commission last updated it in 2013.
darkreading – Read More
Researchers Detail Zero-Click Copilot Exploit ‘EchoLeak’
/in General NewsResearchers at Aim Security disclosed a Microsoft Copilot vulnerability of critical severity this week that could have enabled sensitive data exfiltration via prompt injection attacks.
darkreading – Read More