BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
[wp-rss-aggregator feeds="kitploit" limit="10" pagination="off"]
Exploit DB
[wp-rss-aggregator feeds="exploit-db" limit="10" pagination="off"]
Latest news and insights on Security
Patch Tuesday: January 2025 Security Update Patches Exploited Elevation of Privilege Attacks
/in General NewsMicrosoft’s monthly patches cover Hyper-V NT Kernel Integration VSPs, Git in Visual Studio, and more.
Security | TechRepublic – Read More
Google OAuth Flaw Leads to Account Takeover When Domain Ownership Changes
/in General NewsA vulnerability in Google’s OAuth implementation allows takeover of old employee accounts when domain ownership changes.
The post Google OAuth Flaw Leads to Account Takeover When Domain Ownership Changes appeared first on SecurityWeek.
SecurityWeek – Read More
OWASP’s New LLM Top 10 Shows Emerging AI Threats
/in General NewsUltimately, there is no replacement for an intuitive, security-focused developer working with the critical thinking required to drive down the risk of both AI and human error.
darkreading – Read More
Sweet Security Introduces Patent-Pending LLM-Powered Detection Engine, Reducing Cloud Detection Noise to 0.04%
/in General NewsTel Aviv, Israel, 15th January 2025, CyberNewsWire
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Chrome 132 Patches 16 Vulnerabilities
/in General NewsGoogle has released Chrome 132 with fixes for 16 vulnerabilities, including multiple high-severity security defects.
The post Chrome 132 Patches 16 Vulnerabilities appeared first on SecurityWeek.
SecurityWeek – Read More
Enhancing Health Care Cybersecurity: Bridging HIPAA Gaps with Innovation
/in General NewsThe proposed HIPAA Security Rule introduces mandatory measures to prevent malicious cyberattacks in health care.
Security | TechRepublic – Read More
Nvidia, Zoom, Zyxel Patch High-Severity Vulnerabilities
/in General NewsNvidia, Zoom, and Zyxel have released patches for multiple high-severity vulnerabilities across their products.
The post Nvidia, Zoom, Zyxel Patch High-Severity Vulnerabilities appeared first on SecurityWeek.
SecurityWeek – Read More
Google Cloud Researchers Uncover Flaws in Rsync File Synchronization Tool
/in General NewsAs many as six security vulnerabilities have been disclosed in the popular Rsync file-synchronizing tool for Unix systems, some of which could be exploited to execute arbitrary code on a client.
“Attackers can take control of a malicious server and read/write arbitrary files of any connected client,” the CERT Coordination Center (CERT/CC) said in an advisory. “Sensitive data, such as SSH keys,
The Hacker News – Read More
Ivanti Patches Critical Vulnerabilities in Endpoint Manager
/in General NewsIvanti has released patches for multiple vulnerabilities in Endpoint Manager (EPM), including four critical-severity flaws.
The post Ivanti Patches Critical Vulnerabilities in Endpoint Manager appeared first on SecurityWeek.
SecurityWeek – Read More
Fortinet Confirms New Zero-Day Exploitation
/in General NewsFortinet patches critical vulnerabilities, including a zero-day that has been exploited in the wild since at least November 2024.
The post Fortinet Confirms New Zero-Day Exploitation appeared first on SecurityWeek.
SecurityWeek – Read More