BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
[wp-rss-aggregator feeds="kitploit" limit="10" pagination="off"]
Exploit DB
[wp-rss-aggregator feeds="exploit-db" limit="10" pagination="off"]
Latest news and insights on Security
Chinese State-Sponsored Actors Compromised and Maintained Persistent Access to U.S. Critical Infrastructure for Five Years
/in General NewsVolt Typhoon’s tactics involve extensive pre-compromise reconnaissance, targeting of public-facing network appliances, exploitation of vulnerabilities, and use of living off the land (LOTL) techniques to maintain long-term undiscovered persistence.
Cyware News – Latest Cyber News – Read More
Iran Ramps Up Cyberattacks on Israel Amid Hamas Conflict: Microsoft
/in General NewsIran’s offensive cyber operations against Israel went from chaotic in October 2023 to targeting new geographies a month later.
The post Iran Ramps Up Cyberattacks on Israel Amid Hamas Conflict: Microsoft appeared first on SecurityWeek.
SecurityWeek – Read More
China Caught Dropping RAT Designed for FortiGate Devices
/in General NewsDutch military intelligence warns that new malware, called “Coathanger,” was found in multiple FortiGate devices during an incident response, and that Chinese-state actors are using the persistent RAT for espionage.
darkreading – Read More
Cisco Patches Critical Vulnerabilities in Enterprise Communication Devices
/in General NewsTwo critical vulnerabilities in Cisco Expressway series devices can be exploited in CSRF attacks without authentication.
The post Cisco Patches Critical Vulnerabilities in Enterprise Communication Devices appeared first on SecurityWeek.
SecurityWeek – Read More
IoT Networks Face Advancing Adversaries, Bug Barrage
/in General NewsCyberattacks on critical infrastructure targeting IoT and OS networks are increasing in sophistication, while ICS vulnerabilities surge, new data shows.
darkreading – Read More
Google Announces Enhanced Fraud Protection for Android
/in General NewsGoogle Play Protect will block the installation of sideloaded applications requesting permissions frequently abused by fraudsters.
The post Google Announces Enhanced Fraud Protection for Android appeared first on SecurityWeek.
SecurityWeek – Read More
I Stopped Using Passwords. It’s Great—and a Total Mess
/in General NewsPasskeys are here to replace passwords. When they work, it’s a seamless vision of the future. But don’t ditch your old logins just yet.
Security Latest – Read More
How to Predict Your Patching Priorities
/in General NewsImplementing a smart and timely approach to patching remains one of the primary ways for organizations to protect their networks from attackers.
The post How to Predict Your Patching Priorities appeared first on SecurityWeek.
SecurityWeek – Read More
3 Million Toothbrushes Abused for DDoS Attack: Real or Not?
/in General NewsThree million electric toothbrushes were reportedly used for disruptive DDoS attacks, but cybersecurity experts questioned the claims.
The post 3 Million Toothbrushes Abused for DDoS Attack: Real or Not? appeared first on SecurityWeek.
SecurityWeek – Read More
Google Fixed an Android Critical Remote Code Execution Flaw
/in General NewsGoogle has released the February 2024 security patches for Android to fix 46 vulnerabilities, including a critical remote code execution flaw (CVE-2024-0031) in the System component.
Cyware News – Latest Cyber News – Read More