BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
[wp-rss-aggregator feeds="kitploit" limit="10" pagination="off"]
Exploit DB
[wp-rss-aggregator feeds="exploit-db" limit="10" pagination="off"]
Latest news and insights on Security
Google says ‘Big Sleep’ AI tool found bug hackers planned to use
/in General NewsOn Tuesday, Google said Big Sleep managed to discover CVE-2025-6965 — a critical security flaw that Google said was “only known to threat actors and was at risk of being exploited.”
The Record from Recorded Future News – Read More
Attackers Hide JavaScript in SVG Images to Lure Users to Malicious Sites
/in General NewsBeware! SVG images are now being used with obfuscated JavaScript for stealthy redirect attacks via spoofed emails. Get insights from Ontinue’s latest research on detection and defence.
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
Attackers Abuse AWS Cloud to Target Southeast Asian Governments
/in General NewsThe intelligence-gathering cyber campaign introduces the novel HazyBeacon backdoor and uses legitimate cloud communication channels for command-and-control (C2) and exfiltration to hide its malicious activities.
darkreading – Read More
Ukrainian hackers claim to have destroyed servers of Russian drone maker
/in General NewsA coalition of Ukrainian hackers breached and wiped systems belonging to Gaskar Group, a Moscow-based drone maker.
Security News | TechCrunch – Read More
Newly Emerged GLOBAL GROUP RaaS Expands Operations with AI-Driven Negotiation Tools
/in General NewsCybersecurity researchers have shed light on a new ransomware-as-a-service (RaaS) operation called GLOBAL GROUP that has targeted a wide range of sectors in Australia, Brazil, Europe, and the United States since its emergence in early June 2025.
GLOBAL GROUP was “promoted on the Ramp4u forum by the threat actor known as ‘$$$,'” EclecticIQ researcher Arda Büyükkaya said. “The same actor controls
The Hacker News – Read More
Virtual Event Preview: Cloud & Data Security Summit 2025 – Tackling Exposed Attack Surfaces in the Cloud
/in General NewsVirtual event brings together leading experts, practitioners, and innovators for a full day of insightful discussions and tactical guidance on evolving threats and real-world defense strategies in cloud security.
The post Virtual Event Preview: Cloud & Data Security Summit 2025 – Tackling Exposed Attack Surfaces in the Cloud appeared first on SecurityWeek.
SecurityWeek – Read More
Threat Actors Use SVG Smuggling for Browser-Native Redirection
/in General NewsObfuscated JavaScript code is embedded within SVG files for browser-native redirection to malicious pages.
The post Threat Actors Use SVG Smuggling for Browser-Native Redirection appeared first on SecurityWeek.
SecurityWeek – Read More
Louis Vuitton says customers in Turkey, South Korea and UK impacted by data breaches
/in General NewsA statement from Louis Vuitton South Korea said the breach involved names, contact information and other data provided by customers. No financial information was included in the breach.
The Record from Recorded Future News – Read More
DOGE staffer with access to Americans’ personal data leaked private xAI API key
/in General NewsThe researcher who found the exposed key said it “raises questions” about how DOGE handles sensitive data.
Security News | TechCrunch – Read More
MITRE Launches AADAPT Framework for Financial Systems
/in General NewsThe new framework is modeled after and meant to complement the MITRE ATT&CK framework, and it is aimed at detecting and responding to cyberattacks on cryptocurrency assets and other financial targets.
darkreading – Read More