BackBox.org News – Page 345 – Latest news and insights on Security

BackBox News

Court Data Exposed by Vulnerabilities in Software Used by US Government: Researcher

October 3, 2024/in General News

Several e-filing and record management systems used in various US states were affected by serious vulnerabilities exposing sensitive data.

The post Court Data Exposed by Vulnerabilities in Software Used by US Government: Researcher appeared first on SecurityWeek.

SecurityWeek – Read More

Adobe Commerce Flaw Exploited to Compromise Thousands of Sites

October 3, 2024/in General News

Over 4,000 Adobe Commerce and Magento stores unpatched against an exploited vulnerability have been compromised.

The post Adobe Commerce Flaw Exploited to Compromise Thousands of Sites appeared first on SecurityWeek.

SecurityWeek – Read More

License Plate Readers Are Creating a US-Wide Database of Political Lawn Signs and Bumper Stickers

October 3, 2024/in General News

From Trump campaign signs to Planned Parenthood bumper stickers, license plate readers around the US are creating searchable databases that reveal Americans’ political leanings and more.

Security Latest – Read More

Cybersecurity Head Says There’s No Chance a Foreign Adversary Can Change US Election Results

October 3, 2024/in General News

CISA director Jen Easterly says there is no chance a foreign adversary can change the results of the upcoming US election.

The post Cybersecurity Head Says There’s No Chance a Foreign Adversary Can Change US Election Results appeared first on SecurityWeek.

SecurityWeek – Read More

Chrome, Firefox Updates Patch High-Severity Vulnerabilities

October 3, 2024/in General News

The latest Chrome and Firefox security updates address multiple high-severity vulnerabilities affecting the popular web browsers.

The post Chrome, Firefox Updates Patch High-Severity Vulnerabilities appeared first on SecurityWeek.

SecurityWeek – Read More

New Vulnerabilities Expose Hundreds of Thousands of DrayTek Routers to Hacking

October 3, 2024/in General News

Forescout has identified more than a dozen new vulnerabilities in DrayTek routers, exposing hundreds of thousands of devices to attacks.

The post New Vulnerabilities Expose Hundreds of Thousands of DrayTek Routers to Hacking appeared first on SecurityWeek.

SecurityWeek – Read More

Meta faces consequences for storing millions of passwords in plaintext

October 3, 2024/in General News

Meta has been fined $101 million by Ireland’s Data Protection Commission for storing hundreds of millions of user passwords in plaintext. We don’t really need to point the obvious, that storing passwords in plaintext is major violation of security best practices. Disclosed by Meta in 2019, it was then revealed that passwords for various Meta-owned platforms were logged in plaintext and stored…

Source

TechSplicer – Read More

LockBit Ransomware and Evil Corp Leaders Arrested and Sanctioned in Joint Global Effort

October 3, 2024/in General News

A new wave of international law enforcement actions has led to four arrests and the takedown of nine servers linked to the LockBit (aka Bitwise Spider) ransomware operation, marking the latest salvo against what was once a prolific financially motivated group.
This includes the arrest of a suspected LockBit developer in France while on holiday outside of Russia, two individuals in the U.K. who

The Hacker News – Read More

Ivanti Endpoint Manager Flaw Actively Targeted, CISA Warns Agencies to Patch

October 3, 2024/in General News

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a security flaw impacting Endpoint Manager (EPM) that the company patched in May to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation.
The vulnerability, tracked as CVE-2024-29824, carries a CVSS score of 9.6 out of a maximum of 10.0, indicating critical severity.
“An

The Hacker News – Read More

China-Backed APT Group Culling Thai Government Data

October 3, 2024/in General News

CeranaKeeper is bombarding Southeast Asia with data exfiltration attacks via file-sharing services such as Pastebin, OneDrive, and GitHub, researchers say.

darkreading – Read More

Company Blogs

Hacking Tools

No feed items found.

Exploit DB

No feed items found.

BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.

Click me

Make a Donation

BackBox News

Court Data Exposed by Vulnerabilities in Software Used by US Government: Researcher

Adobe Commerce Flaw Exploited to Compromise Thousands of Sites

License Plate Readers Are Creating a US-Wide Database of Political Lawn Signs and Bumper Stickers

Cybersecurity Head Says There’s No Chance a Foreign Adversary Can Change US Election Results

Chrome, Firefox Updates Patch High-Severity Vulnerabilities

New Vulnerabilities Expose Hundreds of Thousands of DrayTek Routers to Hacking

Meta faces consequences for storing millions of passwords in plaintext

LockBit Ransomware and Evil Corp Leaders Arrested and Sanctioned in Joint Global Effort

Ivanti Endpoint Manager Flaw Actively Targeted, CISA Warns Agencies to Patch

China-Backed APT Group Culling Thai Government Data

Company Blogs

Are the Android SafetyCore and Android System Key Verifier apps safe? | Kaspersky official blog

Miniaudio and Adobe Acrobat Reader vulnerabilities

Patch it up: Old vulnerabilities are everyone’s problems

Update your VMware ESXi products now | Kaspersky official blog

New Pre-Installed Dev Tools for Deep Sandbox Malware Analysis

Abusing with style: Leveraging cascading style sheets for evasion and tracking

AI Safety: Key Threats and Solutions

Main vulnerabilities from Microsoft’s March Patch Tuesday | Kaspersky official blog

Microsoft Patch Tuesday for March 2025 — Snort rules and prominent vulnerabilities

5 Common Evasion Techniques in Malware

Hacking Tools

Exploit DB