BackBox News

Latest news and insights on Security

CISA: Critical Infrastructure Must Master Isolation, Recovery

The agency has issued guidance to help critical infrastructure operators prepare for cyberattacks by foreign threat actors.

The post CISA: Critical Infrastructure Must Master Isolation, Recovery appeared first on SecurityWeek.

SecurityWeek – ​Read More

Palo Alto PAN-OS Flaw Under Active Exploitation Enables Remote Code Execution

Palo Alto PAN-OS Flaw Under Active Exploitation Enables Remote Code Execution

Palo Alto Networks has released an advisory warning that a critical buffer overflow vulnerability in its PAN-OS software has been exploited in the wild.
The vulnerability, tracked as CVE-2026-0300, has been described as a case of unauthenticated remote code execution. It carries a CVSS score of 9.3 if the User-ID Authentication Portal is configured to enable access from the internet or any

The Hacker News – ​Read More

Government, Scientific Entities Hit via Daemon Tools Supply Chain Attack

While trojanized Daemon Tools versions were installed worldwide, a sophisticated backdoor was dropped only on a dozen systems.

The post Government, Scientific Entities Hit via Daemon Tools Supply Chain Attack appeared first on SecurityWeek.

SecurityWeek – ​Read More

Massive “Low and Slow” DDoS Attack Hits Platform With 2.45 Billion in 5 Hours

DataDome researchers uncovered a massive low and slow DDoS attack that delivered 2.45 billion requests using 1.2 million IP addresses.

Hackread – Cybersecurity News, Data Breaches, AI and More – ​Read More

Middle East Cyber Battle Field Broadens — Especially in UAE

Middle East Cyber Battle Field Broadens — Especially in UAE

As the war with Iran continues, breach attempts targeting the United Arab Emirates tripled in a few weeks — many targeting critical infrastructure.

darkreading – ​Read More

Oracle Debuts Monthly Critical Security Patch Updates

Containing fixes for critical-severity vulnerabilities, the monthly rollouts will focus on addressing priority issues faster.

The post Oracle Debuts Monthly Critical Security Patch Updates appeared first on SecurityWeek.

SecurityWeek – ​Read More

Your job search is getting riskier, says LinkedIn – 9 ways to tell real listings from scams

One in three job recruiters has been impersonated by scammers, according to a new LinkedIn survey. Here’s what to look out for and how to stay safe in your search.

Latest news – ​Read More

Palo Alto Networks to Patch Zero-Day Exploited to Hack Firewalls

CVE-2026-0300 affects the Captive Portal service of PAN-OS software on PA and VM series firewalls.

The post Palo Alto Networks to Patch Zero-Day Exploited to Hack Firewalls appeared first on SecurityWeek.

SecurityWeek – ​Read More

All Linux gamers should take the latest Bazzite release seriously – here’s why

Want the best possible out-of-the-box gaming experience on Linux? The latest Bazzite distro delivers.

Latest news – ​Read More

Fedora 44 made me forget I was using Linux – in the best way

The latest release from the Fedora Project is now available, and it includes a long list of refinements that make this one of the best versions yet.

Latest news – ​Read More

BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.