BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
Exploitation of Critical Adobe Commerce Flaw Puts Many eCommerce Sites at Risk
/in General NewsPatched in September, the SessionReaper bug could be exploited without authentication to bypass a security feature.
The post Exploitation of Critical Adobe Commerce Flaw Puts Many eCommerce Sites at Risk appeared first on SecurityWeek.
SecurityWeek – Read More
Why Organizations Are Abandoning Static Secrets for Managed Identities
/in General NewsAs machine identities explode across cloud environments, enterprises report dramatic productivity gains from eliminating static credentials. And only legacy systems remain the weak link.
For decades, organizations have relied on static secrets, such as API keys, passwords, and tokens, as unique identifiers for workloads. While this approach provides clear traceability, it creates what security
The Hacker News – Read More
This ‘Privacy Browser’ Has Dangerous Hidden Features
/in General NewsThe Universe Browser is believed to have been downloaded millions of times. But researchers say it behaves like malware and has links to Asia’s booming cybercrime and illegal gambling networks.
Security Latest – Read More
Best blood pressure watches: I tested the top models that actually work
/in General NewsI tested some of the top blood pressure watches available, and considered medical research and current FDA guidance, to help you choose the best one for your needs.
Latest news – Read More
Lanscope Endpoint Manager Zero-Day Exploited in the Wild
/in General NewsThe bug has been exploited in the wild as a zero-day and the US cybersecurity agency CISA has added it to its KEV catalog.
The post Lanscope Endpoint Manager Zero-Day Exploited in the Wild appeared first on SecurityWeek.
SecurityWeek – Read More
Finally, a pair of clip-on earbuds with enough bass to fuel my workouts
/in General NewsWhen I run, I like to at least hear some bass from my open-ear earbuds, and until now, that seemed like a pipedream.
Latest news – Read More
I tested HP’s new all-white OmniBook, and it’s my favorite ultraportable Windows laptop yet
/in General NewsHP’s OmniBook 7 Aero packages solid hardware, a 2K display, and an exceptional speaker system in a featherweight device ideal for professionals.
Latest news – Read More
Over 250 Magento Stores Hit Overnight as Hackers Exploit New Adobe Commerce Flaw
/in General NewsE-commerce security company Sansec has warned that threat actors have begun to exploit a recently disclosed security vulnerability in Adobe Commerce and Magento Open Source platforms, with more than 250 attack attempts recorded against multiple stores over the past 24 hours.
The vulnerability in question is CVE-2025-54236 (CVSS score: 9.1), a critical improper input validation flaw that could be
The Hacker News – Read More
Critical Lanscope Endpoint Manager Bug Exploited in Ongoing Cyberattacks, CISA Confirms
/in General NewsThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a critical security flaw impacting Motex Lanscope Endpoint Manager to its Known Exploited Vulnerabilities (KEV) catalog, stating it has been actively exploited in the wild.
The vulnerability, CVE-2025-61932 (CVSS v4 score: 9.3), impacts on-premises versions of Lanscope Endpoint Manager, specifically Client
The Hacker News – Read More
Mideast, African Hackers Target Gov’ts, Banks, Small Retailers
/in General NewsIn the hotly political Middle East, you’d expect hacktivism and disruption of services. But retail attacks?
darkreading – Read More