BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
[wp-rss-aggregator feeds="kitploit" limit="10" pagination="off"]
Exploit DB
[wp-rss-aggregator feeds="exploit-db" limit="10" pagination="off"]
Latest news and insights on Security
Akira Ransomware Attacks Fuel Uptick in Exploitation of SonicWall Flaw
/in General NewsThe Akira ransomware group is likely exploiting a combination of three attack vectors to gain unauthorized access to vulnerable appliances.
The post Akira Ransomware Attacks Fuel Uptick in Exploitation of SonicWall Flaw appeared first on SecurityWeek.
SecurityWeek – Read More
UAE’s K2 Think AI Jailbroken Through Its Own Transparency Features
/in General NewsResearchers exploited K2 Think’s built-in explainability to dismantle its safety guardrails, raising new questions about whether transparency and security in AI can truly coexist.
The post UAE’s K2 Think AI Jailbroken Through Its Own Transparency Features appeared first on SecurityWeek.
SecurityWeek – Read More
UK Rail Operator LNER Confirms Cyber Attack Exposing Passenger Data
/in General NewsLNER cyber attack exposes passenger contact details and journey data. No financial information or passwords were taken, but…
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
Senator Urges FTC Probe of Microsoft Over Security Failures
/in General NewsSenator Ron Wyden’s complaints focus on Windows security and the Kerberoasting attack technique.
The post Senator Urges FTC Probe of Microsoft Over Security Failures appeared first on SecurityWeek.
SecurityWeek – Read More
AI Emerges as the Hope—and Risk—for Overloaded SOCs
/in General NewsWith security teams drowning in alerts, many suppress detection rules and accept hidden risks. AI promises relief through automation and triage—but without human oversight, it risks becoming part of the problem.
The post AI Emerges as the Hope—and Risk—for Overloaded SOCs appeared first on SecurityWeek.
SecurityWeek – Read More
Russian APT Attacks Kazakhstan’s Largest Oil Company
/in General NewsResearchers say a likely Russian APT used a compromised employee email account to attack Kazakhstan’s biggest company, though the oil and gas firm claims it was a pen test.
darkreading – Read More
ChillyHell macOS Malware Resurfaces, Using Google.com as a Decoy
/in General NewsA previously dormant macOS threat, ChillyHell, is reviving. Read how this malware can bypass security checks, remain hidden,…
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
Remote CarPlay Hack Puts Drivers at Risk of Distraction and Surveillance
/in General NewsOligo Security has shared details on an Apple CarPlay attack that hackers may be able to launch without any interaction.
The post Remote CarPlay Hack Puts Drivers at Risk of Distraction and Surveillance appeared first on SecurityWeek.
SecurityWeek – Read More
Fake Madgicx Plus and SocialMetrics Extensions Are Hijacking Meta Business Accounts
/in General NewsCybersecurity researchers have disclosed two new campaigns that are serving fake browser extensions using malicious ads and fake websites to steal sensitive data.
The malvertising campaign, per Bitdefender, is designed to push fake “Meta Verified” browser extensions named SocialMetrics Pro that claim to unlock the blue check badge for Facebook and Instagram profiles. At least 37 malicious ads
The Hacker News – Read More
Cracking the Boardroom Code: Helping CISOs Speak the Language of Business
/in General NewsCISOs know their field. They understand the threat landscape. They understand how to build a strong and cost-effective security stack. They understand how to staff out their organization. They understand the intricacies of compliance. They understand what it takes to reduce risk. Yet one question comes up again and again in our conversations with these security leaders: how do I make the impact
The Hacker News – Read More