BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
Newly Identified BITSLOTH Backdoor Uses Novel C2 Communication Channel
/in General NewsA new Windows backdoor named BITSLOTH has been discovered by cybersecurity researchers. This malware exploits the Background Intelligent Transfer Service (BITS) for stealthy communication, making it difficult to detect.
Cyware News – Latest Cyber News – Read More
Russian Threat Actors Hijacked Over 30,000 Domains in Sitting Ducks Attacks
/in General NewsThis attack method takes advantage of vulnerabilities at the registrar level and lax ownership verification at DNS providers. Research has shown that over a million domains could be vulnerable to this type of attack daily.
Cyware News – Latest Cyber News – Read More
Ongoing DEV#POPPER Malware Campaign Expands Targeting
/in General NewsThe attackers, posing as interviewers, urge candidates to download a ZIP file containing malware. The campaign has targeted victims in South Korea, North America, Europe, and the Middle East.
Cyware News – Latest Cyber News – Read More
Cisco Investments Backs Anti-Ransomware Firm Halcyon
/in General NewsCisco Investments has invested in Halcyon, an anti-ransomware company, to enhance its platform and reduce ransomware risks to zero. The investment amount remains undisclosed, but Halcyon has raised a total of $90 million so far.
Cyware News – Latest Cyber News – Read More
Fighting Ursa Luring Targets With Car for Sale
/in General NewsAPT28, a Russia-linked threat actor (also known as Fighting Ursa, Fancy Bear, and Sofacy), has been identified in a campaign using a car sale phishing lure to deliver the HeadLace Windows backdoor to target diplomats since March 2024.
Cyware News – Latest Cyber News – Read More
Increased Botnet Activity Against Apache OFBiz Exploiting CVE-2024-32113
/in General NewsThe open-source ERP framework OFBiz is being targeted by the Mirai botnet due to a critical directory traversal vulnerability that allows for remote command execution. This vulnerability was patched in May for versions before 18.12.13.
Cyware News – Latest Cyber News – Read More
New Tech, Personnel Will Help CISA with Coming Rush of Cyber Incident Reports
/in General NewsThe CISA is working to comply with the Cyber Incident Reporting for Critical Infrastructure Act of 2022, requiring critical infrastructure providers to report cybersecurity incidents and ransomware attacks within specific timeframes.
Cyware News – Latest Cyber News – Read More
Critical Infrastructure Group Launches Effort to Aid Federal Agencies’ Cyber Defenses
/in General NewsThe Center for Federal Civilian Executive Branch Resilience, launched by the Institute for Critical Infrastructure Technology, aims to enhance standards and procedures for protecting government agencies from cybercriminals and nation-state hackers.
Cyware News – Latest Cyber News – Read More
New NSA AI-powered Tool Would Help Industry Optimize Cyber Defense Testing
/in General NewsThe Autonomous Penetration Testing platform would replace much of the laborious, manual process of such testing, where organizations use vulnerability scanning tools and other methods to measure the robustness of their cyberdefenses against hackers
Cyware News – Latest Cyber News – Read More
Threat Actor Abuses Trial Feature for Cloudflare Tunnels to Deliver RATs
/in General NewsHackers are exploiting the free TryCloudflare service to distribute remote access trojans (RATs) like AsyncRAT, GuLoader, and Remcos RAT. This activity was first detected in February and has been linked to campaigns targeting various industries.
Cyware News – Latest Cyber News – Read More