BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
[wp-rss-aggregator feeds="kitploit" limit="10" pagination="off"]
Exploit DB
[wp-rss-aggregator feeds="exploit-db" limit="10" pagination="off"]
Latest news and insights on Security
The Perilous Role of the CISO: Navigating Modern Minefields
/in General NewsAs organizations grapple with the implications of cybersecurity on their bottom line and reputation, the question of whether the CISO role is worth the inherent risks looms large.
The post The Perilous Role of the CISO: Navigating Modern Minefields appeared first on SecurityWeek.
SecurityWeek – Read More
AMD Investigating Breach Claims After Hacker Offers to Sell Data
/in General NewsAMD has launched an investigation after a notorious hacker announced selling sensitive data allegedly belonging to the company.
The post AMD Investigating Breach Claims After Hacker Offers to Sell Data appeared first on SecurityWeek.
SecurityWeek – Read More
Mailcow Mail Server Flaws Expose Servers to Remote Code Execution
/in General NewsTwo security vulnerabilities have been disclosed in the Mailcow open-source mail server suite that could be exploited by malicious actors to achieve arbitrary code execution on susceptible instances.
Both shortcomings impact all versions of the software prior to version 2024-04, which was released on April 4, 2024. The issues were responsibly disclosed by SonarSource on March 22, 2024.
The flaws
The Hacker News – Read More
Singapore Extradites Suspected Cybercrime Scammers from Malaysia
/in General NewsCops decimate cybercrime infrastructure used to steal data from nearly 2,000 people in Singapore last year.
darkreading – Read More
Hackers Derail Amtrak Guest Rewards Accounts in Breach
/in General NewsThe US passenger rail giant said attackers used previously compromised credentials to crack accounts and access a freight train of personal data.
darkreading – Read More
Critical VMware Bugs Open Swaths of VMs to RCE, Data Theft
/in General NewsA trio of bugs could allow hackers to escalate privileges and remotely execute code on virtual machines deployed across cloud environments.
darkreading – Read More
Blackbaud Fined $6.75M After 2020 Ransomware Attack
/in General NewsThreat actors were able to breach Blackbaud’s systems and compromise sensitive data, largely because of the company’s poor cybersecurity practices and lack of encrypted data, the AG said.
darkreading – Read More
Cut & Paste Tactics Import Malware to Unwitting Victims
/in General News“ClearFake” and “ClickFix” attackers are tricking people into cutting and pasting malicious PowerShell scripts to infect their own machines with RATs and infostealers.
darkreading – Read More
Internet Computer Protocol Launches Walletless Verified Credentials for Public Trust
/in General NewsInternet Computer Protocol (ICP) introduces Verified Credentials (VCs), a walletless solution enhancing data sharing privacy. Unveiled at DICE 2024, VCs help combat bots and fake accounts on social media, ensuring secure and efficient verification.
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
BlackSuit Ransomware Leaks Kansas City Police Data in Failed Ransom Plot
/in General NewsBlackSuit Ransomware, known as the rebrand of the Conti ransomware gang, has leaked a trove of Kansas City Police data, including evidence records, investigation files, crime scene phones, and much more, after the department refused to pay the ransom.
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More