BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
[wp-rss-aggregator feeds="kitploit" limit="10" pagination="off"]
Exploit DB
[wp-rss-aggregator feeds="exploit-db" limit="10" pagination="off"]
Latest news and insights on Security
Microsoft Says Ransomware Gangs Exploiting Just-Patched VMware ESXi Flaw
/in General NewsVMware did not mention in-the-wild exploitation for CVE-2024-37085 but Microsoft says ransomware gangs are abusing the just-patched flaw.
The post Microsoft Says Ransomware Gangs Exploiting Just-Patched VMware ESXi Flaw appeared first on SecurityWeek.
SecurityWeek – Read More
Phishing Campaign Exploited Proofpoint Email Protections for Spoofing
/in General NewsThreat actors have exploited Proofpoint’s email protection service to deliver millions of spoofed phishing emails.
The post Phishing Campaign Exploited Proofpoint Email Protections for Spoofing appeared first on SecurityWeek.
SecurityWeek – Read More
XSS and OAuth Combo Threatens Millions of Users Due to Hotjar Flaw
/in General NewsCybersecurity Experts Uncover Critical Vulnerabilities in Leading Web Analytics Platform Hotjar, Potentially Exposing Sensitive Data of Millions of…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Critical Flaw in Acronis Cyber Infrastructure Exploited in the Wild
/in General NewsCybersecurity company Acronis is warning that a now-patched critical security flaw impacting its Cyber Infrastructure (ACI) product has been exploited in the wild.
The vulnerability, tracked as CVE-2023-45249 (CVSS score: 9.8), concerns a case of remote code execution that stems from the use of default passwords.
The flaw impacts the following versions of Acronis Cyber Infrastructure (ACI) –
&
The Hacker News – Read More
VPN Usage Increased 5016% in Bangladesh Amidst Online Censorship
/in General NewsVPN demand skyrockets in Bangladesh due to internet restrictions. Learn about the global impact of VPNs on internet…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
OAuth+XSS Attack Threatens Millions of Web Users With Account Takeover
/in General NewsAn attack flow that combines API flaws within “log in with” implementations and Web injection bugs could affect millions of websites.
darkreading – Read More
Report: Russian Ransomware Gangs Account for 69% of all Ransom Proceeds
/in General NewsAccording to an analysis by TRM Labs, Russian-speaking threat actors were responsible for over 69% of all ransomware-related cryptocurrency earnings in the past year, amounting to more than $500 million.
Cyware News – Latest Cyber News – Read More
Most people worry about deepfakes – and overestimate their ability to spot them
/in General NewsResearch shows voters around the world are nervous about political deepfakes, with some country’s citizens being far more concerned than others.
Latest news – Read More
Proofpoint Email Routing Flaw Exploited to Send Millions of Spoofed Phishing Emails
/in General NewsAn unknown threat actor has been linked to a massive scam campaign that exploited an email routing misconfiguration in email security vendor Proofpoint’s defenses to send millions of messages spoofing various legitimate companies.
“These emails echoed from official Proofpoint email relays with authenticated SPF and DKIM signatures, thus bypassing major security protections — all to deceive
The Hacker News – Read More
Saboteurs Cut Internet Cables in Latest Disruption During Paris Olympics
/in General NewsLong-distance cables were severed across France in a move that disrupted internet connectivity.
Security Latest – Read More