BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
[wp-rss-aggregator feeds="kitploit" limit="10" pagination="off"]
Exploit DB
[wp-rss-aggregator feeds="exploit-db" limit="10" pagination="off"]
Latest news and insights on Security
I trusted Malwarebytes to secure my PC for a month – here’s how it performed
/in General NewsMalwarebytes Premium combines excellent threat protection and helpful security tools in an easy-to-use package.
Latest news – Read More
Industry Reactions to New Trump AI Cybersecurity Executive Order: Feedback Friday
/in General NewsExperts commented on the EO’s voluntary nature, the balance between innovation and security, and potential implementation gaps.
The post Industry Reactions to New Trump AI Cybersecurity Executive Order: Feedback Friday appeared first on SecurityWeek.
SecurityWeek – Read More
Nightclub Giant RCI Says Data Breach Affects 40,000 Individuals
/in General NewsThe company detected a network intrusion in March and an investigation showed that some files were stolen during the attack.
The post Nightclub Giant RCI Says Data Breach Affects 40,000 Individuals appeared first on SecurityWeek.
SecurityWeek – Read More
FIFA World Cup 2026 Scams Are Already Live: Fake Sites, Banking Malware, and Stolen Logins
/in General NewsSecurity researchers and the FBI are warning that a wave of FIFA-themed fraud is already hitting World Cup 2026 fans, days before the June 11 kickoff.
Recent reports describe thousands of lookalike FIFA domains, banking malware hidden inside pirate streaming apps, and at least one operation that copies FIFA’s login page well enough to take over real accounts.
It is an obvious target. More than
The Hacker News – Read More
Five Eyes: Chinese Spies Target Government, Military Staff With Fake Job Opportunities
/in General NewsPosing as recruiters on online platforms, Chinese intelligence officers target personnel with access to classified or privileged information.
The post Five Eyes: Chinese Spies Target Government, Military Staff With Fake Job Opportunities appeared first on SecurityWeek.
SecurityWeek – Read More
Hackers Exploit Critical Everest Forms Pro WordPress Plugin Flaw to Take Over Sites
/in General NewsThreat actors are actively exploiting a critical security flaw in Everest Forms Pro, a WordPress plugin with about 4,000 active installations, to execute arbitrary code, leading to a complete site compromise.
The vulnerability in question is CVE-2026-3300 (CVSS score: 9.8), a remote code execution bug impacting all versions of the plugin up to, and including, 1.9.12. A patch for the flaw was
The Hacker News – Read More
Cisco Warns of 7th SD-WAN Zero-Day Exploited in 2026
/in General NewsThe vulnerability is tracked as CVE-2026-20245 and it can allow arbitrary command execution as root, but no patch yet.
The post Cisco Warns of 7th SD-WAN Zero-Day Exploited in 2026 appeared first on SecurityWeek.
SecurityWeek – Read More
PCPJack Hijacks 230 AWS, Google Cloud, and Azure Servers for Covert SMTP Relay Network
/in General NewsThe threat actor known as PCPJack has hijacked cloud servers associated with Amazon Web Services (AWS), Google Cloud, and Microsoft Azure to create a covert SMTP email relay network.
“Compromised business servers across the U.S., Europe, and Asia were quietly converted into SMTP proxies, verified for mail relay capability, and synced to a downstream consumer every five minutes,” Hunt.io said in
The Hacker News – Read More
4 Critical Threats Where Attackers Have the Advantage
/in General NewsGartner analysts issued a call to action to bolster defenses against several emerging critical threats, such as deepfakes and prompt injections.
darkreading – Read More
China’s TA4922 Expands Cybercrime Attacks Globally
/in General NewsOne of the world’s most diverse, least-focused cybercrime groups is enlarging its footprint beyond East Asia.
darkreading – Read More