BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
Massive Phishing Campaign Exploiting Proofpoint’s Email Protection to Dispatch Millions of Perfectly Spoofed Emails
/in General NewsThe campaign began in January 2024 and peaked at 14 million emails in June. The emails were designed to steal sensitive information and included authentic-looking signatures to bypass security measures.
Cyware News – Latest Cyber News – Read More
Crafty ClickFix-Style Phishing Campaign Targets Microsoft OneDrive Users
/in General NewsThe attackers use social engineering tactics to get users to run a PowerShell script, compromising their systems. The scam starts with an email containing an HTML file that tricks the recipient into clicking on a button to fix a fake DNS issue.
Cyware News – Latest Cyber News – Read More
New Mandrake Spyware Found in Google Play Store Apps After Two Years
/in General NewsA new iteration of a sophisticated Android spyware called Mandrake has been discovered in five applications that were available for download from the Google Play Store and remained undetected for two years.
The applications attracted a total of more than 32,000 installations before being pulled from the app storefront, Kaspersky said in a Monday write-up. A majority of the downloads originated
The Hacker News – Read More
Indian APT Targeting Mediterranean Ports and Maritime Facilities
/in General NewsThe SideWinder APT has been targeting ports and maritime facilities in the Indian Ocean and Mediterranean Sea in recent attacks.
The post Indian APT Targeting Mediterranean Ports and Maritime Facilities appeared first on SecurityWeek.
SecurityWeek – Read More
Cyberattackers Accessed HealthEquity Customer Info via Third Party
/in General NewsData thieves heisted the HSA provider’s data repository for 4.5 million people’s HR information, including employer and dependents intel.
darkreading – Read More
AI, Cybersecurity Top Investment Areas for Industrial Organizations: Cisco
/in General NewsCisco has published its inaugural State of Industrial Networking report, based on a survey of 1,000 individuals.
The post AI, Cybersecurity Top Investment Areas for Industrial Organizations: Cisco appeared first on SecurityWeek.
SecurityWeek – Read More
The CrowdStrike Meltdown: A Wake-up Call for Cybersecurity
/in General NewsThe incident serves as a stark reminder of the fragility of our digital infrastructure. By adopting a diversified, resilient approach to cybersecurity, we can mitigate the risks and build a more secure digital future.
darkreading – Read More
Software Supply Chain Security Firm Lineaje Raises $20M in Series A Funding
/in General NewsSoftware supply chain security startup Lineaje has raised $20 million in a Series A funding round that brings the total to $27 million.
The post Software Supply Chain Security Firm Lineaje Raises $20M in Series A Funding appeared first on SecurityWeek.
SecurityWeek – Read More
Cyber Threat Intelligence: Illuminating the Deep, Dark Cybercriminal Underground
/in General NewsLearn about critical threats that can impact your organization and the bad actors behind them from Cybersixgill’s threat experts. Each story shines a light on underground activities, the threat actors involved, and why you should care, along with what you can do to mitigate risk.
The deep and dark web, otherwise known as the cybercriminal underground, is where malicious actors gather to
The Hacker News – Read More
Microsoft Warns of Ransomware Gangs Abusing VMware ESXi Authentication Bypass in Attacks
/in General NewsRansomware operators like Black Basta and Akira have already used this vulnerability in attacks, with Storm-0506 deploying Black Basta ransomware on the ESXi hypervisors of a North American engineering firm.
Cyware News – Latest Cyber News – Read More