BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
[wp-rss-aggregator feeds="kitploit" limit="10" pagination="off"]
Exploit DB
[wp-rss-aggregator feeds="exploit-db" limit="10" pagination="off"]
Latest news and insights on Security
AI Sidebar Spoofing Puts ChatGPT Atlas, Perplexity Comet and Other Browsers at Risk
/in General NewsSquareX has shown how malicious browser extensions can impersonate AI sidebar interfaces.
The post AI Sidebar Spoofing Puts ChatGPT Atlas, Perplexity Comet and Other Browsers at Risk appeared first on SecurityWeek.
SecurityWeek – Read More
Vibe Coding’s Real Problem Isn’t Bugs—It’s Judgment
/in General NewsAs AI coding tools flood enterprises with functional but flawed software, researchers urge embedding security checks directly into the AI workflow.
The post Vibe Coding’s Real Problem Isn’t Bugs—It’s Judgment appeared first on SecurityWeek.
SecurityWeek – Read More
PhantomCaptcha RAT Attack Targets Aid Groups Supporting Ukraine
/in General NewsSentinelLABS’ research reveals PhantomCaptcha, a highly coordinated, one-day cyber operation on Oct 8, 2025, targeting the International Red Cross, UNICEF, and Ukraine government groups using fake emails and a Remote Access Trojan (RAT) linked to Russian infrastructure.
Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto and More – Read More
GlassWorm Malware Targets Developers Through OpenVSX Marketplace
/in General NewsGlassWorm, a self-propagating malware, infects VS Code extensions through the OpenVSX marketplace, stealing credentials and using blockchain for control.
Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto and More – Read More
Exploitation of Critical Adobe Commerce Flaw Puts Many eCommerce Sites at Risk
/in General NewsPatched in September, the SessionReaper bug could be exploited without authentication to bypass a security feature.
The post Exploitation of Critical Adobe Commerce Flaw Puts Many eCommerce Sites at Risk appeared first on SecurityWeek.
SecurityWeek – Read More
Why Organizations Are Abandoning Static Secrets for Managed Identities
/in General NewsAs machine identities explode across cloud environments, enterprises report dramatic productivity gains from eliminating static credentials. And only legacy systems remain the weak link.
For decades, organizations have relied on static secrets, such as API keys, passwords, and tokens, as unique identifiers for workloads. While this approach provides clear traceability, it creates what security
The Hacker News – Read More
This ‘Privacy Browser’ Has Dangerous Hidden Features
/in General NewsThe Universe Browser is believed to have been downloaded millions of times. But researchers say it behaves like malware and has links to Asia’s booming cybercrime and illegal gambling networks.
Security Latest – Read More
Best blood pressure watches: I tested the top models that actually work
/in General NewsI tested some of the top blood pressure watches available, and considered medical research and current FDA guidance, to help you choose the best one for your needs.
Latest news – Read More
Lanscope Endpoint Manager Zero-Day Exploited in the Wild
/in General NewsThe bug has been exploited in the wild as a zero-day and the US cybersecurity agency CISA has added it to its KEV catalog.
The post Lanscope Endpoint Manager Zero-Day Exploited in the Wild appeared first on SecurityWeek.
SecurityWeek – Read More
Finally, a pair of clip-on earbuds with enough bass to fuel my workouts
/in General NewsWhen I run, I like to at least hear some bass from my open-ear earbuds, and until now, that seemed like a pipedream.
Latest news – Read More