BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
[wp-rss-aggregator feeds="kitploit" limit="10" pagination="off"]
Exploit DB
[wp-rss-aggregator feeds="exploit-db" limit="10" pagination="off"]
Latest news and insights on Security
Morocco Investigates Social Security Agency Data Leak
/in General NewsA threat actor has claimed responsibility for the alleged politically motivated attack and has uploaded the stolen data to a Dark Web forum.
darkreading – Read More
Homeland Security Email Tells a US Citizen to ‘Immediately’ Self-Deport
/in General NewsAn email sent by the Department of Homeland Security instructs people in the US on a temporary legal status to leave the country. But who the email actually applies to—and who actually received it—is far from clear.
Security Latest – Read More
China Secretly (and Weirdly) Admits It Hacked US Infrastructure
/in General NewsPlus: The Department of Homeland Security begins surveilling immigrants’ social media, President Donald Trump targets former CISA director who refuted his claims of 2020 election fraud, and more.
Security Latest – Read More
5 warning signs that your phone’s been hacked – and how to fight back
/in General NewsHere are the biggest warning signs that your phone may be compromised and the secret codes that can tell you all about it.
Latest stories for ZDNET in Security – Read More
Pall Mall Process Progresses but Leads to More Questions
/in General NewsNations continue to sign the Code of Practice for States in an effort to curb commercial spyware, yet implementation and enforcement concerns have yet to be figured out.
darkreading – Read More
SaaS Security Essentials: Reducing Risks in Cloud Applications
/in General NewsAs organizations increasingly rely on SaaS applications to run their operations, securing them has become a necessity. Without…
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
Paper Werewolf Threat Actor Targets Flash Drives With New Malware
/in General NewsThe threat actor, also known as Goffee, has been active since at least 2022 and has changed its tactics and techniques over the years while targeting Russian organizations.
darkreading – Read More
Russia’s Storm-2372 Hits Orgs with MFA Bypass via Device Code Phishing
/in General NewsRussian APT group Storm-2372 employs device code phishing to bypass Multi-Factor Authentication (MFA). Targets include government, technology, finance,…
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
Financial Fraud, With a Third-Party Twist, Dominates Cyber Claims
/in General NewsThe most damaging attacks continue to be ransomware, but financial fraud claims are more numerous — and both are driven by increasing third-party breaches.
darkreading – Read More
Fortinet Warns Attackers Retain FortiGate Access Post-Patching via SSL-VPN Symlink Exploit
/in General NewsFortinet has revealed that threat actors have found a way to maintain read-only access to vulnerable FortiGate devices even after the initial access vector used to breach the devices was patched.
The attackers are believed to have leveraged known and now-patched security flaws, including, but not limited to, CVE-2022-42475, CVE-2023-27997, and CVE-2024-21762.
“A threat actor used a known
The Hacker News – Read More