BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
No feed items found.
Exploit DB
- [webapps] Loaded Commerce 6.6 - Client-Side Template Injection(CSTI) (AngularJS)
- [webapps] Extensive VC Addons for WPBakery page builder 1.9.0 - Remote Code Execution (RCE)
- [webapps] TranzAxis 3.2.41.10.26 - Stored Cross-Site Scripting (XSS) (Authenticated)
- [webapps] Gitea 1.24.0 - HTML Injection
- [local] VeeVPN 1.6.1 - Unquoted Service Path
- [webapps] Chamilo LMS 1.11.24 - Remote Code Execution (RCE)
OpenSSH Patches Vulnerabilities Allowing MitM, DoS Attacks
/in General NewsThe latest OpenSSH update patches two vulnerabilities, including one that enabled MitM attacks with no user interaction.
The post OpenSSH Patches Vulnerabilities Allowing MitM, DoS Attacks appeared first on SecurityWeek.
SecurityWeek – Read More
VC Company Insight Partners Hacked
/in General NewsVenture capital firm Insight Partners has been targeted in a cyberattack that involved unauthorized access to its information systems.
The post VC Company Insight Partners Hacked appeared first on SecurityWeek.
SecurityWeek – Read More
Blockaid Raises $50 Million to Secure Blockchain Applications
/in General NewsBlockaid raises $50 million in Series B funding to scale operations to meet demand for its blockchain application security platform.
The post Blockaid Raises $50 Million to Secure Blockchain Applications appeared first on SecurityWeek.
SecurityWeek – Read More
Chrome 133, Firefox 135 Updates Patch High-Severity Vulnerabilities
/in General NewsGoogle and Mozilla resolve high-severity memory safety vulnerabilities with the latest Chrome and Firefox security updates.
The post Chrome 133, Firefox 135 Updates Patch High-Severity Vulnerabilities appeared first on SecurityWeek.
SecurityWeek – Read More
New Snake Keylogger Variant Leverages AutoIt Scripting to Evade Detection
/in General NewsA new variant of the Snake Keylogger malware is being used to actively target Windows users located in China, Turkey, Indonesia, Taiwan, and Spain.
Fortinet FortiGuard Labs said the new version of the malware has been behind over 280 million blocked infection attempts worldwide since the start of the year.
“Typically delivered through phishing emails containing malicious attachments or links,
The Hacker News – Read More
Sanctioned entities fueled $16 billion in cryptocurrency activity last year, report says
/in General NewsThere were billions of dollars’ worth of cryptocurrency transactions in 2024 by entities sanctioned by the United States, say researchers from Chainalysis in a new report.
The Record from Recorded Future News – Read More
Free Diagram Tool Aids Management of Complex ICS/OT Cybersecurity Decisions
/in General NewsAdmeritia has launched Cyber Decision Diagrams, a free tool designed to help organizations manage complex decisions related to ICS/OT cybersecurity.
The post Free Diagram Tool Aids Management of Complex ICS/OT Cybersecurity Decisions appeared first on SecurityWeek.
SecurityWeek – Read More
Lee Enterprises Newspaper Disruptions Caused by Ransomware
/in General NewsLee Enterprises has shared more details on the recent cyberattack, saying the attackers encrypted and stole files.
The post Lee Enterprises Newspaper Disruptions Caused by Ransomware appeared first on SecurityWeek.
SecurityWeek – Read More
Xerox Versalink Printers Vulnerabilities Could Let Hackers Steal Credentials
/in General NewsXerox Versalink printers are vulnerable to pass-back attacks. Rapid7 discovers LDAP & SMB flaws (CVE-2024-12510 & CVE-2024-12511). Update…
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – Read More
How Russian Hackers Are Exploiting Signal ‘Linked Devices’ Feature for Real-Time Spying
/in General NewsMandiant warns that multiple Russian APTs are abusing a nifty Signal Messenger feature to surreptitiously spy on encrypted conversations.
The post How Russian Hackers Are Exploiting Signal ‘Linked Devices’ Feature for Real-Time Spying appeared first on SecurityWeek.
SecurityWeek – Read More