BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
[wp-rss-aggregator feeds="kitploit" limit="10" pagination="off"]
Exploit DB
[wp-rss-aggregator feeds="exploit-db" limit="10" pagination="off"]
Latest news and insights on Security
Ransomware Operations are Becoming Less Profitable
/in General NewsRansomware operations are experiencing a decline in profitability due to various factors such as increased cyber resilience of organizations, the availability of decryptors, and more frequent law enforcement actions.
Cyware News – Latest Cyber News – Read More
A (Strange) Interview the Russian-Military-Linked Hackers Targeting US Water Utilities
/in General NewsDespite Cyber Army of Russia’s claims of swaying US “minds and hearts,” experts say the cyber sabotage group appears to be hyping its hacking for a domestic audience.
Security Latest – Read More
University System of Georgia Says 800,000 Impacted by MOVEit Hack
/in General NewsUniversity System of Georgia says Social Security numbers and bank account numbers were compromised in the May 2023 MOVEit hack.
The post University System of Georgia Says 800,000 Impacted by MOVEit Hack appeared first on SecurityWeek.
SecurityWeek – Read More
Price Drop: This Complete Ethical Hacking Bundle is Now $40
/in General NewsGet a comprehensive, potentially lucrative ethical hacking education with 18 courses on today’s top tools and tech. This bundle is just $39.97 through 5/12.
Security | TechRepublic – Read More
Over 50,000 Tinyproxy Servers Vulnerable to Critical RCE Flaw
/in General NewsA critical remote code execution (RCE) flaw, CVE-2023-49606, was found affecting nearly 52,000 Tinyproxy servers. This vulnerability was disclosed by Cisco Talos in December 2023, impacting versions 1.11.1 and 1.10.0 of Tinyproxy.
Cyware News – Latest Cyber News – Read More
Hackers Exploiting LiteSpeed Cache Bug to Gain Full Control of WordPress Sites
/in General NewsA high-severity flaw impacting the LiteSpeed Cache plugin for WordPress is being actively exploited by threat actors to create rogue admin accounts on susceptible websites.
The findings come from WPScan, which said that the vulnerability (CVE-2023-40000, CVSS score: 8.3) has been leveraged to set up bogus admin users with the names wpsupp‑user
The Hacker News – Read More
Hackers Exploit LiteSpeed Cache Flaw to Create WordPress Admins
/in General NewsWPScan observed in April increased exploitation activity against WordPress sites with versions of the plugin older than 5.7.0.1, which are vulnerable to a high-severity (8.8) unauthenticated cross-site scripting flaw tracked as CVE-2023-40000.
Cyware News – Latest Cyber News – Read More
Law Enforcement Agencies Identified LockBit Ransomware Admin and Sanctioned Him
/in General NewsThe FBI, UK National Crime Agency, and Europol have unmasked the identity of the admin of the LockBit ransomware operation, aka ‘LockBitSupp’ and ‘putinkrab’, and issued sanctions against him.
Cyware News – Latest Cyber News – Read More
LockBit Honcho Faces Sanctions, With Aussie Org Ramifications
/in General NewsAustralian businesses and individuals now face government fines and consequences for paying ransoms or interacting with assets owned by LockBitSupp, aka Dmitry Yuryevich Khoroshev.
darkreading – Read More
Chinese Hackers Deployed Backdoor Quintet to Down MITRE
/in General NewsMITRE’s hackers made use of at least five different Web shells and backdoors as part of their attack chain.
darkreading – Read More