BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
[wp-rss-aggregator feeds="kitploit" limit="10" pagination="off"]
Exploit DB
[wp-rss-aggregator feeds="exploit-db" limit="10" pagination="off"]
Latest news and insights on Security
China-Linked Hackers Exploit SAP and SQL Server Flaws in Attacks Across Asia and Brazil
/in General NewsThe China-linked threat actor behind the recent in-the-wild exploitation of a critical security flaw in SAP NetWeaver has been attributed to a broader set of attacks targeting organizations in Brazil, India, and Southeast Asia since 2023.
“The threat actor mainly targets the SQL injection vulnerabilities discovered on web applications to access the SQL servers of targeted organizations,” Trend
The Hacker News – Read More
Australian ransomware victims now must tell the government if they pay up
/in General NewsAustralia is now the first country to require ransomware victims to report if they make any extortion payments to their attackers.
The Record from Recorded Future News – Read More
Victoria’s Secret US Website Restored After Security Incident
/in General NewsVictoria’s Secret website was down due to a ‘security incident’ impacting online and some in-store services. Get the…
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
ConnectWise Discloses Suspected State-Sponsored Hack
/in General NewsThe IT software provider says ScreenConnect users were impacted by the attack, which exploited a high-severity ASP.NET vulnerability.
The post ConnectWise Discloses Suspected State-Sponsored Hack appeared first on SecurityWeek.
SecurityWeek – Read More
Chinese Phishing Service Haozi Resurfaces, Fueling Criminal Profits
/in General NewsA Chinese-language PhaaS platform Haozi is making cybercrime easy with no tech skills needed. Discover how this plug-and-play service facilitated over $280,000 in illicit transactions.
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
MITRE Publishes Post-Quantum Cryptography Migration Roadmap
/in General NewsThe roadmap provides an overview of four key stages of the migration process, namely preparation, baseline understanding, planning and execution, and monitoring and evaluation.
The post MITRE Publishes Post-Quantum Cryptography Migration Roadmap appeared first on SecurityWeek.
SecurityWeek – Read More
U.S. Sanctions Funnull for $200M Romance Baiting Scams Tied to Crypto Fraud
/in General NewsThe U.S. Department of Treasury’s Office of Foreign Assets Control (OFAC) has levied sanctions against a Philippines-based company named Funnull Technology Inc. and its administrator Liu Lizhi for providing infrastructure to conduct romance baiting scams that led to massive cryptocurrency losses.
The Treasury accused the Taguig-headquartered company of enabling thousands of websites involved in
The Hacker News – Read More
96% of IT pros say AI agents are a security risk, but they’re deploying them anyway
/in General NewsThe same capabilities that make agents much more powerful than traditional chatbots also make them much bigger potential liabilities.
Latest stories for ZDNET in Security – Read More
How AI coding agents could infiltrate and destroy open source software
/in General NewsImagine a single rogue line of code slipping past your tired eyes – and suddenly your entire app is compromised. AI coding agents could be the silent saboteurs of the next big cybersecurity crisis.
Latest stories for ZDNET in Security – Read More
ConnectWise Hit by Cyberattack; Nation-State Actor Suspected in Targeted Breach
/in General NewsConnectWise, the developer of remote access and support software ScreenConnect, has disclosed that it was the victim of a cyber attack that it said was likely perpetrated by a nation-state threat actor.
“ConnectWise recently learned of suspicious activity within our environment that we believe was tied to a sophisticated nation-state actor, which affected a very small number of ScreenConnect
The Hacker News – Read More