BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
Source Code of Phorpiex Botnet with Anti-AV Capabilities on Sale
/in General NewsThe notorious Trik botnet, aka Phorpiex, is being sold in antivirus circles, offering advanced capabilities to evade detection. This C++ botnet includes modules such as a crypto clipper, a USB emitter, and a PE infector targeting crypto wallets.
Cyware News – Latest Cyber News – Read More
Five takeaways from Forrester’s 2024 state of application security
/in General NewsApplication security often gets sacrificed for speed and to meet ever-tightening time-to-market windows for new apps.Read More
Security News | VentureBeat – Read More
Ubuntu Fixes Two OpenVPN Vulnerabilities
/in General NewsUbuntu has fixed two vulnerabilities in OpenVPN, a virtual private network software. These vulnerabilities could keep the closing session active or lead to denial of service. Canonical released security updates for affected Ubuntu releases.
Cyware News – Latest Cyber News – Read More
Massive OTP-Stealing Android Malware Campaign Discovered
/in General NewsAndroid malware can intercept and steal OTPs and login credentials, leading to complete account takeovers.
The post Massive OTP-Stealing Android Malware Campaign Discovered appeared first on SecurityWeek.
SecurityWeek – Read More
Multiple SMTP Servers Vulnerable to Spoofing Attacks, Let Hackers Bypass Authentication
/in General NewsMultiple SMTP servers are vulnerable to spoofing attacks that allow hackers to bypass authentication. Two vulnerabilities, CVE-2024-7208 and CVE-2024-7209, exploit weaknesses in authentication and verification mechanisms provided by SPF and DKIM.
Cyware News – Latest Cyber News – Read More
Oracle challenges cloud giants with new Nvidia AI hardware offerings
/in General NewsOracle expands its AI offerings with new Nvidia GPU options on OCI, challenging major cloud providers and catering to businesses of all sizes in the evolving AI landscape.Read More
Security News | VentureBeat – Read More
Analysis of Top Infostealers: Redline, Vidar and Formbook
/in General NewsProtect your data from cyber threats: Learn about RedLine, Vidar, and FormBook infostealers, their tactics, and how ANY.RUN’s…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
DigiCert to Revoke 83,000+ SSL Certificates Due to Domain Validation Oversight
/in General NewsCertificate authority (CA) DigiCert has warned that it will be revoking a subset of SSL/TLS certificates within 24 hours due to an oversight with how it verified if a digital certificate is issued to the rightful owner of a domain.
The company said it will be taking the step of revoking certificates that do not have proper Domain Control Validation (DCV).
“Before issuing a certificate to a
The Hacker News – Read More
Microsoft 365 subscriptions now include a free VPN – here’s how to use it
/in General NewsIt’s not bad for a free product but there are a few downsides.
Latest stories for ZDNET in Security – Read More
Dangerous XSS Bugs in RedCAP Threaten Academic & Scientific Research
/in General NewsThe security vulnerabilities, CVE-2024-37394, CVE-2024-37395, and CVE-2024-37396, could lay open proprietary and sensitive research to data thieves.
darkreading – Read More