BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
[wp-rss-aggregator feeds="kitploit" limit="10" pagination="off"]
Exploit DB
[wp-rss-aggregator feeds="exploit-db" limit="10" pagination="off"]
Latest news and insights on Security
Employees Enter Sensitive Data Into GenAI Prompts Far Too Often
/in General NewsThe propensity for users to enter customer data, source code, employee benefits information, financial data, and more into ChatGPT, Copilot, and others is racking up real risk for enterprises.
darkreading – Read More
15K Fortinet Device Configs Leaked to the Dark Web
/in General NewsThe stolen firewall data is thorough but more than 2 years old now, meaning that most organizations following even basic security practices face minimal risk, hopefully.
darkreading – Read More
Costa Rica refinery cyberattack was first deployment for new US response program, ambassador says
/in General NewsA recent ransomware attack on RECOPE, Costa Rica’s state-run energy company, was the first real-world test for FALCON, a new State Department program for foreign incident response, a top diplomat tells Recorded Future News.
The Record from Recorded Future News – Read More
The FCC’s Jessica Rosenworcel Isn’t Leaving Without a Fight
/in General NewsAs the US faces “the worst telecommunications hack in our nation’s history,” by China’s Salt Typhoon hackers, the outgoing FCC chair is determined to bolster network security if it’s the last thing she does.
Security Latest – Read More
US Government Agencies Call for Closing the Software Understanding Gap
/in General NewsCISA and other agencies call to action for the US government to take steps to close the software understanding gap.
The post US Government Agencies Call for Closing the Software Understanding Gap appeared first on SecurityWeek.
SecurityWeek – Read More
Treasury sanctions Salt Typhoon hacking group behind breaches of major US telecom firms
/in General NewsThe US government has also sanctioned the hacker responsible for December’s US Treasury hack
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
In Other News: Lawsuits and Settlements, CrowdStrike Phish, MITRE’s D3FEND 1.0
/in General NewsNoteworthy stories that might have slipped under the radar: several multi-million dollar settlements, CrowdStrike-themed phishing emails, and MITRE launches D3FEND 1.0.
The post In Other News: Lawsuits and Settlements, CrowdStrike Phish, MITRE’s D3FEND 1.0 appeared first on SecurityWeek.
SecurityWeek – Read More
Malware stole internal PowerSchool passwords from engineer’s hacked computer
/in General NewsThe theft of a PowerSchool engineer’s passwords prior to the breach raises further doubts about the company’s security practices.
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
Leveraging Behavioral Insights to Counter LLM-Enabled Hacking
/in General NewsAs LLMs broaden access to hacking and diversify attack strategies, understanding the thought processes behind these innovations will be vital for bolstering IT defenses.
darkreading – Read More
Critical Flaws in WGS-804HPT Switches Enable RCE and Network Exploitation
/in General NewsCybersecurity researchers have disclosed three security flaws in Planet Technology’s WGS-804HPT industrial switches that could be chained to achieve pre-authentication remote code execution on susceptible devices.
“These switches are widely used in building and home automation systems for a variety of networking applications,” Claroty’s Tomer Goldschmidt said in a Thursday report. “An attacker
The Hacker News – Read More