BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
Despite Bans, AI Code Generation Tools Widely Used in Organizations
/in General NewsDespite bans, organizations are widespread in using AI code tools, causing security concerns, as reported by Checkmarx. While 15% prohibit AI tools for code generation, a staggering 99% still use them.
Cyware News – Latest Cyber News – Read More
National Vulnerability Backlog Could Surge to 30,000 by 2025
/in General NewsThe National Vulnerability Database (NVD), maintained by the National Institute of Standards and Technology (NIST), currently has a backlog of over 16,000 vulnerabilities, with an average daily influx of more than 100 new security flaws.
Cyware News – Latest Cyber News – Read More
Senators to FTC: Car Companies’ Data Privacy Practices Must be Investigated
/in General NewsU.S. senators have raised concerns about how car companies handle consumer data, revealing that major automakers share and sell drivers’ information without proper consent.
Cyware News – Latest Cyber News – Read More
WhatsApp for Windows Lets Python, PHP Scripts Execute with no Warning
/in General NewsWhatsApp currently blocks certain file types considered risky, but Python and PHP scripts are not included in the blocklist. Security researcher Saumyajeet Das identified this vulnerability while testing file attachments in WhatsApp conversations.
Cyware News – Latest Cyber News – Read More
Gh0stGambit Dropper Used to Deploy Gh0st RAT Against Chinese Users
/in General NewsThe Gh0st RAT Trojan is being distributed to Chinese Windows users through a fake Chrome website. The malware has been around since 2008 and has evolved over the years, often used by cyberespionage groups in China.
Cyware News – Latest Cyber News – Read More
How Infostealers Pillaged the World’s Passwords
/in General NewsInfostealer malware is swiping millions of passwords, cookies, and search histories. It’s a gold mine for hackers—and a disaster for anyone who becomes a target.
Security Latest – Read More
Millions of Websites Susceptible XSS Attack via OAuth Implementation Flaw
/in General NewsResearchers discovered and published details of an XSS attack that could potentially impact millions of websites around the world.
The post Millions of Websites Susceptible XSS Attack via OAuth Implementation Flaw appeared first on SecurityWeek.
SecurityWeek – Read More
How iOS 18 will impact your iPhone’s battery health – and what you can do about it
/in General NewsBottom line: you can’t change the laws of physics.
Latest news – Read More
Acronis Product Vulnerability Exploited in the Wild
/in General NewsAcronis warns of a critical-severity Acronis Cyber Infrastructure (ACI) vulnerability being exploited in attacks.
The post Acronis Product Vulnerability Exploited in the Wild appeared first on SecurityWeek.
SecurityWeek – Read More
Data From Deleted Github Repositories May Not Actually be Deleted
/in General NewsResearchers at Truffle Security have found, or arguably rediscovered, that data from deleted GitHub repositories (public or private) and from deleted copies (forks) of repositories isn’t necessarily deleted.
Cyware News – Latest Cyber News – Read More