BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
[wp-rss-aggregator feeds="kitploit" limit="10" pagination="off"]
Exploit DB
[wp-rss-aggregator feeds="exploit-db" limit="10" pagination="off"]
Latest news and insights on Security
Scammers Send Physical Phishing Letters to Steal Ledger Wallet Seed Phrases
/in General NewsScammers are mailing fake Ledger phishing letters to users in Italy with QR codes that trick crypto wallet users into revealing seed phrases.
Hackread – Cybersecurity News, Data Breaches, AI and More – Read More
Roborock vs Ecovacs: Which robot vacuum should you buy?
/in General NewsI’ve tested dozens of robot vacuum brands, with Roborock and Ecovacs models consistently delivering market-leading performance. Here’s how they compare.
Latest news – Read More
Grafana Says It Rejected Ransom Demand After Source Code Theft
/in General NewsGrafana says hackers stole its source code after accessing a GitHub token, but no customer data or systems were affected.
Hackread – Cybersecurity News, Data Breaches, AI and More – Read More
Grafana GitHub Token Breach Led to Codebase Download and Extortion Attempt
/in General NewsGrafana has disclosed that an “unauthorized party” obtained a token that granted them the ability to access the company’s GitHub environment and download its codebase.
“Our investigation has determined that no customer data or personal information was accessed during this incident, and we have found no evidence of impact to customer systems or operations,” Grafana
said
in a series of
The Hacker News – Read More
Funnel Builder Flaw Under Active Exploitation Enables WooCommerce Checkout Skimming
/in General NewsA critical security vulnerability impacting the
Funnel Builder
plugin for WordPress has come under active exploitation in the wild to
inject malicious JavaScript code
into WooCommerce checkout pages with the goal of stealing payment data.
Details of the activity were
published
by Sansec this week. The vulnerability currently does not have an official CVE identifier. It
The Hacker News – Read More
PoC Code Published for Critical NGINX Vulnerability
/in General NewsIntroduced in 2008, the critical-severity security defect was patched this week in NGINX Plus and NGINX open source.
The post PoC Code Published for Critical NGINX Vulnerability appeared first on SecurityWeek.
SecurityWeek – Read More
Cybercriminal Twins Caught After They Forgot to Turn Off Microsoft Teams Recording
/in General NewsPlus: Instructure’s Canvas ransomware debacle comes to a close, an alleged dark net market kingpin gets arrested, OpenAI workers fall victim to a supply chain attack, and more.
Security Latest – Read More
AI Voice Cloning: The Technology Behind It, Who’s Building It, and Where It’s Headed
/in General NewsExplore AI voice cloning technology, leading companies, real-world uses, ethical risks, and future trends shaping synthetic voices.
Hackread – Cybersecurity News, Data Breaches, AI and More – Read More
More than $10 million stolen from crypto platform THORChain
/in General NewsTHORChain officials said the investigation into the incident is ongoing but explained that one of their six vaults was compromised, leading to a loss of about $10.7 million.
The Record from Recorded Future News – Read More
The 4th Linux kernel flaw this month can lead to stolen SSH host keys
/in General NewsThe good news is there’s already a patch. The bad news is that the fix isn’t available for all Linux distributions yet. Here’s what you can do in the meantime.
Latest news – Read More