A previously undocumented China-aligned advanced persistent threat (APT) group named PlushDaemon has been linked to a supply chain attack targeting a South Korean virtual private network (VPN) provider in 2023, according to new findings from ESET.
“The attackers replaced the legitimate installer with one that also deployed the group’s signature implant that we have named SlowStepper – a
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00adminhttps://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.pngadmin2025-01-22 10:07:372025-01-22 10:07:37PlushDaemon APT Targets South Korean VPN Provider in Supply Chain Attack
Oracle is urging customers to apply its January 2025 Critical Patch Update (CPU) to address 318 new security vulnerabilities spanning its products and services.
The most severe of the flaws is a bug in the Oracle Agile Product Lifecycle Management (PLM) Framework (CVE-2025-21556, CVSS score: 9.9) that could allow an attacker to seize control of susceptible instances.
“Easily exploitable
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00adminhttps://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.pngadmin2025-01-22 08:07:542025-01-22 08:07:54Oracle Releases January 2025 Patch to Address 318 Flaws Across Major Products
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00adminhttps://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.pngadmin2025-01-22 07:08:472025-01-22 07:08:47Criminal IP and OnTheHub Partner to Deliver Advanced Cybersecurity Solutions for Education
Web infrastructure and security company Cloudflare on Tuesday said it detected and blocked a 5.6 Terabit per second (Tbps) distributed denial-of-service (DDoS) attack, the largest ever attack to be reported to date.
The UDP protocol-based attack took place on October 29, 2024, targeting one of its customers, an unnamed internet service provider (ISP) from Eastern Asia. The activity originated
Despite lagging in technology adoption, African and Middle Eastern organizations are catching up, driven by smartphone acceptance and national identity systems.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00adminhttps://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.pngadmin2025-01-22 07:08:462025-01-22 07:08:46Mandatory MFA, Biometrics Make Headway in Middle East, Africa
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00adminhttps://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.pngadmin2025-01-22 05:07:032025-01-22 05:07:03[Virtual Event]: Cybersecurity’s Most Promising New and Emerging Technologies
BreachForums admin Conor Fitzpatrick (Pompompurin) faces resentencing after his lenient 17-day sentence was vacated, highlighting the serious consequences…
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00adminhttps://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.pngadmin2025-01-22 01:07:092025-01-22 01:07:09BreachForums Admin Conor Fitzpatrick (Pompompurin) to Be Resentenced
Donald Trump pardoned the creator of the world’s first dark web drug market, who is now a libertarian cause célèbre in some parts of the crypto community.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00adminhttps://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.pngadmin2025-01-22 01:07:082025-01-22 01:07:08Trump Frees Silk Road Creator Ross Ulbricht After 11 Years in Prison
In a letter sent today, the acting DHS secretary terminated membership to all advisory boards, including the Cyber Safety Review Board (CSRB) tasked with investigating state-sponsored cyber threats against the US.
BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
Trump Pardons Founder of Silk Road Website
/in General NewsPresident Donald Trump has pardoned Ross Ulbricht, the founder of Silk Road, an underground website for selling drugs.
The post Trump Pardons Founder of Silk Road Website appeared first on SecurityWeek.
SecurityWeek – Read More
PlushDaemon APT Targets South Korean VPN Provider in Supply Chain Attack
/in General NewsA previously undocumented China-aligned advanced persistent threat (APT) group named PlushDaemon has been linked to a supply chain attack targeting a South Korean virtual private network (VPN) provider in 2023, according to new findings from ESET.
“The attackers replaced the legitimate installer with one that also deployed the group’s signature implant that we have named SlowStepper – a
The Hacker News – Read More
Oracle Releases January 2025 Patch to Address 318 Flaws Across Major Products
/in General NewsOracle is urging customers to apply its January 2025 Critical Patch Update (CPU) to address 318 new security vulnerabilities spanning its products and services.
The most severe of the flaws is a bug in the Oracle Agile Product Lifecycle Management (PLM) Framework (CVE-2025-21556, CVSS score: 9.9) that could allow an attacker to seize control of susceptible instances.
“Easily exploitable
The Hacker News – Read More
Criminal IP and OnTheHub Partner to Deliver Advanced Cybersecurity Solutions for Education
/in General NewsTorrance, United States / California, 22nd January 2025, CyberNewsWire
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Mirai Botnet Launches Record 5.6 Tbps DDoS Attack with 13,000+ IoT Device
/in General NewsWeb infrastructure and security company Cloudflare on Tuesday said it detected and blocked a 5.6 Terabit per second (Tbps) distributed denial-of-service (DDoS) attack, the largest ever attack to be reported to date.
The UDP protocol-based attack took place on October 29, 2024, targeting one of its customers, an unnamed internet service provider (ISP) from Eastern Asia. The activity originated
The Hacker News – Read More
Mandatory MFA, Biometrics Make Headway in Middle East, Africa
/in General NewsDespite lagging in technology adoption, African and Middle Eastern organizations are catching up, driven by smartphone acceptance and national identity systems.
darkreading – Read More
[Virtual Event]: Cybersecurity’s Most Promising New and Emerging Technologies
/in General NewsPost Content
darkreading – Read More
BreachForums Admin Conor Fitzpatrick (Pompompurin) to Be Resentenced
/in General NewsBreachForums admin Conor Fitzpatrick (Pompompurin) faces resentencing after his lenient 17-day sentence was vacated, highlighting the serious consequences…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Trump Frees Silk Road Creator Ross Ulbricht After 11 Years in Prison
/in General NewsDonald Trump pardoned the creator of the world’s first dark web drug market, who is now a libertarian cause célèbre in some parts of the crypto community.
Security Latest – Read More
Trump Fires Cyber Safety Board Investigating Salt Typhoon Hackers
/in General NewsIn a letter sent today, the acting DHS secretary terminated membership to all advisory boards, including the Cyber Safety Review Board (CSRB) tasked with investigating state-sponsored cyber threats against the US.
darkreading – Read More