BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
[wp-rss-aggregator feeds="kitploit" limit="10" pagination="off"]
Exploit DB
[wp-rss-aggregator feeds="exploit-db" limit="10" pagination="off"]
Latest news and insights on Security
New Aquabot Botnet Exploits CVE-2024-41710 in Mitel Phones for DDoS Attacks
/in General NewsA Mirai botnet variant dubbed Aquabot has been observed actively attempting to exploit a medium-severity security flaw impacting Mitel phones in order to ensnare them into a network capable of mounting distributed denial-of-service (DDoS) attacks.
The vulnerability in question is CVE-2024-41710 (CVSS score: 6.8), a case of command injection in the boot process that could allow a malicious actor
The Hacker News – Read More
Unpatched PHP Voyager Flaws Leave Servers Open to One-Click RCE Exploits
/in General NewsThree security flaws have been disclosed in the open-source PHP package Voyager that could be exploited by an attacker to achieve one-click remote code execution on affected instances.
“When an authenticated Voyager user clicks on a malicious link, attackers can execute arbitrary code on the server,” Sonar researcher Yaniv Nizry said in a write-up published earlier this week.
The
The Hacker News – Read More
Fake Videos of Former First Lady Scam Namibians
/in General NewsAmateurish financial scams are common across Africa, and Namibia’s influential former first lady, Monica Geingos, has emerged as a particularly effective host body for these messages.
darkreading – Read More
Operation Talent: FBI Seizes Nulled.to, Cracked.to, Sellix.io and more
/in General NewsThe FBI has seized Nulled.to, Cracked.to, Sellix.io, and StarkRDP.io in Operation Talent, targeting cybercrime forums and illicit marketplaces.…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
DeepSeek helps speed up threat detection while raising national security concerns
/in General NewsDeepSeek and its R1 model aren’t wasting any time rewriting the rules of cybersecurity AI in real-time. Enterprises can’t ignore this risk.Read More
Security News | VentureBeat – Read More
Dario Amodei challenges DeepSeek’s $6 million AI narrative: What Anthropic thinks about China’s latest AI move
/in General NewsAnthropic co-founder Dario Amodei reveals DeepSeek’s Chinese AI breakthrough actually cost billions, not $6 million, challenging market narratives and explaining why AI development remains resource-intensive despite engineering improvements.Read More
Security News | VentureBeat – Read More
Russian UAC-0063 Targets Europe and Central Asia with Advanced Malware
/in General NewsUAC-0063: A Russian-linked threat actor targeting Central Asia and Europe with sophisticated cyberespionage campaigns, including weaponized documents, data…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Exposed DeepSeek Database Revealed Chat Prompts and Internal Data
/in General NewsChina-based DeepSeek has exploded in popularity, drawing greater scrutiny. Case in point: Security researchers found more than 1 million records, including user data and API keys, in an open database.
Security Latest – Read More
Researchers Uncover Lazarus Group Admin Layer for C2 Servers
/in General NewsThe threat actor is using a sophisticated network of VPNs and proxies to centrally manage command and control servers from Pyongyang.
darkreading – Read More
Hackers are hijacking WordPress sites to push Windows and Mac malware
/in General NewsA cybersecurity company says hackers are pushing Mac and Windows malware through sites that are using outdated versions of WordPress.
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More