https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-07-15 09:08:582024-07-15 09:08:58Rabbit r1 AI assistant has secretly been storing user chats that can’t be deleted
The U.S. Government Accountability Office’s annual assessment of the Defense Department’s IT spending revealed that several programs lack approved cybersecurity strategies, leaving them vulnerable to potential cyberattacks.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-07-15 09:08:582024-07-15 09:08:58Several DOD IT Programs Still Don’t Have a Cyber Strategy, Watchdog Finds
The Office of Management and Budget has issued a memorandum outlining the administration’s cybersecurity priorities for fiscal year 2026, aligning with the national cybersecurity strategy.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-07-15 09:08:572024-07-15 09:08:57White House Calls for Defending Critical Infrastructure
The US government is pressuring software manufacturers to address operating system command injection vulnerabilities following high-profile threat actor campaigns exploiting these flaws in 2024.
McAfee Labs has uncovered a unique malware delivery method called the “Clickfix” infection chain, which starts with users being directed to compromised websites and instructed to paste a script into a PowerShell terminal.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-07-15 08:08:382024-07-15 08:08:38ClickFix Deception: A Social Engineering Tactic to Deploy Malware
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-07-15 08:08:372024-07-15 08:08:374 ways to use AI to shop on Amazon Prime Day
Exein, a Rome-based startup, is addressing the critical issue of device security in the IoT space. The company recently secured €15 million (~$16.3 million) in a Series B funding round led by cybersecurity-focused VC 33N.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-07-15 08:08:372024-07-15 08:08:37Exein Raised $16.3 Million Series B to Stop Robotic Arms Going Haywire
Crystalray’s attack chain involves using various OSS tools for reconnaissance, scanning, and exploiting vulnerabilities. The group was first discovered in February using the “SSH-Snake” tool to exploit vulnerabilities in Atlassian Confluence.
Federal research agencies will now require covered institutions to implement cybersecurity programs for research and development security due to threats from China. The goal is to increase awareness of security threats and enable apt responses.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-07-15 07:06:582024-07-15 07:06:58White House to Require Increased Cybersecurity Protocols for R&D Institutions
Cybersecurity researchers have shed light on a new version of a ransomware strain called HardBit that comes packaged with new obfuscation techniques to deter analysis efforts.
“Unlike previous versions, HardBit Ransomware group enhanced the version 4.0 with passphrase protection,” Cybereason researchers Kotaro Ogino and Koshi Oyama said in an analysis.
“The passphrase needs to be provided during
BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
Rabbit r1 AI assistant has secretly been storing user chats that can’t be deleted
/in General NewsA new software update will fix an issue that could let someone see r1 chat logs, photos, and more.
Latest news – Read More
Several DOD IT Programs Still Don’t Have a Cyber Strategy, Watchdog Finds
/in General NewsThe U.S. Government Accountability Office’s annual assessment of the Defense Department’s IT spending revealed that several programs lack approved cybersecurity strategies, leaving them vulnerable to potential cyberattacks.
Cyware News – Latest Cyber News – Read More
White House Calls for Defending Critical Infrastructure
/in General NewsThe Office of Management and Budget has issued a memorandum outlining the administration’s cybersecurity priorities for fiscal year 2026, aligning with the national cybersecurity strategy.
Cyware News – Latest Cyber News – Read More
CISA Urges Software Makers to Eliminate OS Command Injection Flaws
/in General NewsThe US government is pressuring software manufacturers to address operating system command injection vulnerabilities following high-profile threat actor campaigns exploiting these flaws in 2024.
Cyware News – Latest Cyber News – Read More
ClickFix Deception: A Social Engineering Tactic to Deploy Malware
/in General NewsMcAfee Labs has uncovered a unique malware delivery method called the “Clickfix” infection chain, which starts with users being directed to compromised websites and instructed to paste a script into a PowerShell terminal.
Cyware News – Latest Cyber News – Read More
4 ways to use AI to shop on Amazon Prime Day
/in General NewsAI tools can help you generate text, images, and code, but they can also work as a great shopping assistant this Prime Day. Here’s how.
Latest news – Read More
Exein Raised $16.3 Million Series B to Stop Robotic Arms Going Haywire
/in General NewsExein, a Rome-based startup, is addressing the critical issue of device security in the IoT space. The company recently secured €15 million (~$16.3 million) in a Series B funding round led by cybersecurity-focused VC 33N.
Cyware News – Latest Cyber News – Read More
Credential-Stealing OSS ‘Crystalray’ Attacks Jump 10X
/in General NewsCrystalray’s attack chain involves using various OSS tools for reconnaissance, scanning, and exploiting vulnerabilities. The group was first discovered in February using the “SSH-Snake” tool to exploit vulnerabilities in Atlassian Confluence.
Cyware News – Latest Cyber News – Read More
White House to Require Increased Cybersecurity Protocols for R&D Institutions
/in General NewsFederal research agencies will now require covered institutions to implement cybersecurity programs for research and development security due to threats from China. The goal is to increase awareness of security threats and enable apt responses.
Cyware News – Latest Cyber News – Read More
New HardBit Ransomware 4.0 Uses Passphrase Protection to Evade Detection
/in General NewsCybersecurity researchers have shed light on a new version of a ransomware strain called HardBit that comes packaged with new obfuscation techniques to deter analysis efforts.
“Unlike previous versions, HardBit Ransomware group enhanced the version 4.0 with passphrase protection,” Cybereason researchers Kotaro Ogino and Koshi Oyama said in an analysis.
“The passphrase needs to be provided during
The Hacker News – Read More