BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
Two Critical RCE Flaws Discovered in Docker Desktop
/in General NewsTwo critical remote code execution (RCE) flaws, identified as CVE-2024-8695 and CVE-2024-8696, have been uncovered in Docker Desktop, a popular tool for containerized application development.
Cyware News – Latest Cyber News – Read More
Chinese-speaking Hackers Linked to DragonRank SEO Manipulator Service
/in General NewsBy exploiting web app services, the attackers deploy a web shell to launch malware and gather credentials, compromising IIS servers to spread the BadIIS malware. The malware facilitates proxy ware and SEO fraud by manipulating search engine rankings.
Cyware News – Latest Cyber News – Read More
Adobe Completes Fix for Reader Bug with Known PoC Exploit
/in General NewsAdobe has completed a fix for a critical bug in Reader with a known Proof of Concept (PoC) exploit for CVE-2024-41869. The update also addresses another critical flaw, CVE-2024-45112, in various versions of Acrobat and Reader.
Cyware News – Latest Cyber News – Read More
New Linux Malware “Hadooken’ Targets Oracle WebLogic Applications
/in General NewsA new Linux malware named Hadooken is targeting Oracle WebLogic servers, dropping Tsunami malware and deploying a cryptominer. WebLogic servers are vulnerable to cyberattacks due to flaws like deserialization and weak access controls.
Cyware News – Latest Cyber News – Read More
Apple Patches Vision Pro Vulnerability to Prevent GAZEploit Attacks
/in General NewsApple has released a patch for Vision Pro after researchers showed how an attacker can obtain passwords typed by looking at keys.
The post Apple Patches Vision Pro Vulnerability to Prevent GAZEploit Attacks appeared first on SecurityWeek.
SecurityWeek – Read More
UK Teen Arrested Over Transport for London Hack
/in General NewsA 17-year-old from England has been arrested by the NCA over the recent cyberattack on Transport for London.
The post UK Teen Arrested Over Transport for London Hack appeared first on SecurityWeek.
SecurityWeek – Read More
UK Data Centers Gain Critical Infrastructure Status, Raising Green Belt Controversy
/in General NewsThe designation of UK data centers as Critical National Infrastructure strengthens cyber defenses, but a proposed £3.75B data center on protected Green Belt land sparks debate.
The post UK Data Centers Gain Critical Infrastructure Status, Raising Green Belt Controversy appeared first on SecurityWeek.
SecurityWeek – Read More
1.3 Million Android TV Boxes Infected by Vo1d Malware
/in General NewsDoctor Web warns of the new Vo1d Android malware infecting roughly 1.3 million TV boxes running older OS versions.
The post 1.3 Million Android TV Boxes Infected by Vo1d Malware appeared first on SecurityWeek.
SecurityWeek – Read More
Fortinet Data Breach Impacts Customer Information
/in General NewsFortinet has confirmed suffering a data breach impacting customers after a hacker leaked files allegedly stolen from the company.
The post Fortinet Data Breach Impacts Customer Information appeared first on SecurityWeek.
SecurityWeek RSS Feed – Read More
GitLab Updates Resolve Critical Pipeline Execution Vulnerability
/in General NewsGitLab has released security updates to resolve multiple vulnerabilities in GitLab CE/EE, including a critical-severity pipeline execution flaw.
The post GitLab Updates Resolve Critical Pipeline Execution Vulnerability appeared first on SecurityWeek.
SecurityWeek RSS Feed – Read More