BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
[wp-rss-aggregator feeds="kitploit" limit="10" pagination="off"]
Exploit DB
[wp-rss-aggregator feeds="exploit-db" limit="10" pagination="off"]
Latest news and insights on Security
Recent Ivanti Endpoint Manager Flaw Exploited in Attacks
/in General NewsCISA has added the high-severity authentication bypass vulnerability to its KEV list, along with SolarWinds and Workspace One bugs.
The post Recent Ivanti Endpoint Manager Flaw Exploited in Attacks appeared first on SecurityWeek.
SecurityWeek – Read More
How to Stop AI Data Leaks: A Webinar Guide to Auditing Modern Agentic Workflows
/in General NewsArtificial Intelligence (AI) is no longer just a tool we talk to; it is a tool that does things for us. These are called AI Agents. They can send emails, move data, and even manage software on their own.
But there is a problem. While these agents make work faster, they also open a new “back door” for hackers.
The Problem: “The Invisible Employee”
Think of an AI Agent like a new employee who has
The Hacker News – Read More
SIM Swaps Expose a Critical Flaw in Identity Security
/in General NewsSIM swap attacks exploit misplaced trust in phone numbers and human processes to bypass authentication controls and seize high-value accounts.
The post SIM Swaps Expose a Critical Flaw in Identity Security appeared first on SecurityWeek.
SecurityWeek – Read More
Leading Myanmar Fleet Management Company Yoma Fleet Selects AccuKnox SIEM to Replace Legacy Tools
/in General NewsMenlo Park, USA, 10th March 2026, CyberNewswire
Hackread – Cybersecurity News, Data Breaches, AI and More – Read More
How to preorder the Samsung Galaxy S26 Ultra (and other models) – plus the best deals
/in General NewsThe new Galaxy S26 series and the Galaxy Buds 4 arrive this week. It’s your last chance to preorder the new devices and get the best deals.
Latest news – Read More
Threat Actors Mass-Scan Salesforce Experience Cloud via Modified AuraInspector Tool
/in General NewsSalesforce has warned of an increase in threat actor activity that’s aimed at exploiting misconfigurations in publicly accessible Experience Cloud sites by making use of a customized version of an open-source tool called AuraInspector.
The activity, per the company, involves the exploitation of customers’ overly permissive Experience Cloud guest user configurations to obtain access to sensitive
The Hacker News – Read More
CISA Flags SolarWinds, Ivanti, and Workspace One Vulnerabilities as Actively Exploited
/in General NewsThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added three security flaws to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation.
The vulnerability list is as follows –
CVE-2021-22054 (CVSS score: 7.5) – A server-side request forgery (SSRF) vulnerability in Omnissa Workspace One UEM (formerly VMware Workspace One UEM) that
The Hacker News – Read More
Cylake Raises $45 Million to Secure Organizations Barred From Cloud
/in General NewsThe company, founded by Palo Alto Networks’ Nir Zuk, has developed a platform that focuses on data sovereignty.
The post Cylake Raises $45 Million to Secure Organizations Barred From Cloud appeared first on SecurityWeek.
SecurityWeek – Read More
An iPhone-hacking toolkit used by Russian spies likely came from U.S military contractor
/in General NewsGoogle found a series of hacking tools they said were used by a Russian espionage group and a cybercriminal group in China. Sources from a U.S. government defense contractor said some of those hacking tools were theirs.
Security News | TechCrunch – Read More
YouTube Premium vs. YouTube Premium Lite: Are the upgrades worth the $6 difference?
/in General NewsYouTube videos without ads sound great, but you should know about both plans before overpaying for features you don’t use.
Latest news – Read More