BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
[wp-rss-aggregator feeds="kitploit" limit="10" pagination="off"]
Exploit DB
[wp-rss-aggregator feeds="exploit-db" limit="10" pagination="off"]
Latest news and insights on Security
Lessons Learned From McDonald’s Big AI Flub
/in General NewsMcDonald’s hiring platform was using its original default credentials and inadvertently exposed information belonging to approximately 64 million job applicants.
darkreading – Read More
Meta fixes bug that could leak users’ AI prompts and generated content
/in General NewsThe tech giant fixed the security flaw, netting a security researcher $10,000 for privately disclosing the bug.
Security News | TechCrunch – Read More
The FBI’s Jeffrey Epstein Prison Video Had Nearly 3 Minutes Cut Out
/in General NewsMetadata from the “raw” Epstein prison video shows approximately 2 minutes and 53 seconds were removed from one of two stitched-together clips. The cut starts right at the “missing minute.”
Security Latest – Read More
AsyncRAT Spawns Concerning Labyrinth of Forks
/in General NewsSince surfacing on GitHub in 2019, AsyncRAT has become a poster child for how open source malware can democratize cybercrime, with a mazelike footprint of variants available across the spectrum of functionality.
darkreading – Read More
Google says ‘Big Sleep’ AI tool found bug hackers planned to use
/in General NewsOn Tuesday, Google said Big Sleep managed to discover CVE-2025-6965 — a critical security flaw that Google said was “only known to threat actors and was at risk of being exploited.”
The Record from Recorded Future News – Read More
Attackers Hide JavaScript in SVG Images to Lure Users to Malicious Sites
/in General NewsBeware! SVG images are now being used with obfuscated JavaScript for stealthy redirect attacks via spoofed emails. Get insights from Ontinue’s latest research on detection and defence.
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
Attackers Abuse AWS Cloud to Target Southeast Asian Governments
/in General NewsThe intelligence-gathering cyber campaign introduces the novel HazyBeacon backdoor and uses legitimate cloud communication channels for command-and-control (C2) and exfiltration to hide its malicious activities.
darkreading – Read More
Ukrainian hackers claim to have destroyed servers of Russian drone maker
/in General NewsA coalition of Ukrainian hackers breached and wiped systems belonging to Gaskar Group, a Moscow-based drone maker.
Security News | TechCrunch – Read More
Newly Emerged GLOBAL GROUP RaaS Expands Operations with AI-Driven Negotiation Tools
/in General NewsCybersecurity researchers have shed light on a new ransomware-as-a-service (RaaS) operation called GLOBAL GROUP that has targeted a wide range of sectors in Australia, Brazil, Europe, and the United States since its emergence in early June 2025.
GLOBAL GROUP was “promoted on the Ramp4u forum by the threat actor known as ‘$$$,'” EclecticIQ researcher Arda Büyükkaya said. “The same actor controls
The Hacker News – Read More
Virtual Event Preview: Cloud & Data Security Summit 2025 – Tackling Exposed Attack Surfaces in the Cloud
/in General NewsVirtual event brings together leading experts, practitioners, and innovators for a full day of insightful discussions and tactical guidance on evolving threats and real-world defense strategies in cloud security.
The post Virtual Event Preview: Cloud & Data Security Summit 2025 – Tackling Exposed Attack Surfaces in the Cloud appeared first on SecurityWeek.
SecurityWeek – Read More