BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
[wp-rss-aggregator feeds="kitploit" limit="10" pagination="off"]
Exploit DB
[wp-rss-aggregator feeds="exploit-db" limit="10" pagination="off"]
Latest news and insights on Security
Google Sees 5 Chinese Groups Exploiting React2Shell for Malware Delivery
/in General NewsGoogle has also mentioned seeing React2Shell attacks conducted by Iranian threat actors.
The post Google Sees 5 Chinese Groups Exploiting React2Shell for Malware Delivery appeared first on SecurityWeek.
SecurityWeek – Read More
⚡ Weekly Recap: Apple 0-Days, WinRAR Exploit, LastPass Fines, .NET RCE, OAuth Scams & More
/in General NewsIf you use a smartphone, browse the web, or unzip files on your computer, you are in the crosshairs this week. Hackers are currently exploiting critical flaws in the daily software we all rely on—and in some cases, they started attacking before a fix was even ready.
Below, we list the urgent updates you need to install right now to stop these active threats.
⚡ Threat of the Week
Apple and
The Hacker News – Read More
Hamas Linked Hackers Using AshTag Malware Against Diplomatic Offices
/in General NewsNew report by Unit 42 reveals the Hamas-linked Ashen Lepus (WIRTE) group is using the AshTag malware suite to target Middle Eastern diplomatic and government entities with advanced, hidden tactics.
Hackread – Cybersecurity News, Data Breaches, AI, and More – Read More
Finally a 16-inch Windows laptop that gives my MacBook Pro a run for its money
/in General NewsHP’s EliteBook 8 G1i (16-inch) is a power-efficient multitasker with a generous selection of I/O. Here’s my buying advice in 2025.
Latest news – Read More
Are Your AI Assistants Under Attack?
/in General NewsMany users utilize an AI assistant to handle their inbox, leaving them vulnerable to attack.
The post Are Your AI Assistants Under Attack? appeared first on TechRepublic.
Security Archives – TechRepublic – Read More
Atlassian Patches Critical Apache Tika Flaw
/in General NewsAtlassian has released software updates for Bamboo, Bitbucket, Confluence, Crowd, Fisheye/Crucible, and Jira.
The post Atlassian Patches Critical Apache Tika Flaw appeared first on SecurityWeek.
SecurityWeek – Read More
Critical React2Shell Vulnerability (CVE-2025-55182) Analysis: Surge in Attacks Targeting RSC-Enabled Services Worldwide
/in General NewsTorrance, United States / California, December 12th, 2025, CyberNewsWire In December 2025, CVE-2025-55182 (React2Shell), a vulnerability in React…
Hackread – Cybersecurity News, Data Breaches, AI, and More – Read More
Apple Patches Two Zero-Days Tied to Mysterious Exploited Chrome Flaw
/in General NewsApple has released macOS and iOS updates to patch two WebKit zero-days exploited in an “extremely sophisticated” attack.
The post Apple Patches Two Zero-Days Tied to Mysterious Exploited Chrome Flaw appeared first on SecurityWeek.
SecurityWeek – Read More
ServiceNow Mulls $7B Armis Cybersecurity Acquisition
/in General NewsThe deal could be announced within days, according to Bloomberg.
The post ServiceNow Mulls $7B Armis Cybersecurity Acquisition appeared first on TechRepublic.
Security Archives – TechRepublic – Read More
VolkLocker Ransomware Exposed by Hard-Coded Master Key Allowing Free Decryption
/in General NewsThe pro-Russian hacktivist group known as CyberVolk (aka GLORIAMIST) has resurfaced with a new ransomware-as-a-service (RaaS) offering called VolkLocker that suffers from implementation lapses in test artifacts, allowing users to decrypt files without paying an extortion fee.
According to SentinelOne, VolkLocker (aka CyberVolk 2.x) emerged in August 2025 and is capable of targeting both Windows
The Hacker News – Read More