BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
Over 13,000 Hijacked Major-Brand Subdomains Found Bombarding Users With Millions of Malicious Emails
/in General NewsThe threat actors hijack abandoned subdomains and domains of well-known companies, allowing the emails to bypass spam filters and appear legitimate. Brands like MSN, VMware, and eBay have been unwittingly involved.
Cyware News – Latest Cyber News – Read More
White House Urges Tech Industry to Switch to Memory-Safe Programming Languages
/in General NewsA new report by the Office of the National Cyber Director (ONCD) highlighted that up to 70% of security vulnerabilities are due to memory safety issues in certain programming languages.
Cyware News – Latest Cyber News – Read More
New IDAT Loader Version Uses Steganography to Push Remcos RAT
/in General NewsThe attackers employed sophisticated techniques such as code injection, execution modules, and dynamic loading of Windows API functions to evade detection by automated security products.
Cyware News – Latest Cyber News – Read More
MGM Resorts’ Cyberattack Headache Continues as Regulators Launch Investigations
/in General NewsMGM Resorts is facing regulatory investigations and potential fines following a cyberattack that disrupted its operations, with the possibility of incurring losses from legal proceedings.
Cyware News – Latest Cyber News – Read More
Earth Lusca Uses Geopolitical Lure to Target Taiwan Before Elections
/in General NewsThe attack involved a multi-stage infection chain, including spear phishing, obfuscated JavaScript files, and DLL hijacking, ultimately leading to the deployment of a Cobalt Strike payload.
Cyware News – Latest Cyber News – Read More
Meta ramps up efforts to combat disinformation ahead of crucial EU elections
/in General NewsAs crucial EU elections approach, Facebook’s parent Meta unveils new strategies to detect deepfakes and combat disinformation, but experts say influencers remain vulnerable to manipulation.Read More
Security News | VentureBeat – Read More
WordPress Plugin Alert – Critical SQLi Vulnerability Threatens 200K+ Websites
/in General NewsA critical security flaw has been disclosed in a popular WordPress plugin called Ultimate Member that has more than 200,000 active installations.
The vulnerability, tracked as CVE-2024-1071, carries a CVSS score of 9.8 out of a maximum of 10. Security researcher Christiaan Swiers has been credited with discovering and reporting the flaw.
In an advisory published last week, WordPress
The Hacker News – Read More
China Launches New Cyber-Defense Plan for Industrial Networks
/in General NewsGovernment will provide additional cybersecurity training and recruit additional cybersecurity talent in an effort to better secure its industrial sector from attacks.
darkreading – Read More
LoanDepot Ransomware Attack Leads to Data Breach; 17 Million Impacted
/in General NewsBy Waqas
LoanDepot identified the ransomware attack on January 4, 2024
This is a post from HackRead.com Read the original post: LoanDepot Ransomware Attack Leads to Data Breach; 17 Million Impacted
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Prowler gets $6M seed to build out hit open-source cloud security platform
/in General NewsAlready, to date, the open source version has been downloaded more than 6 million times, and is used by giants such as Salesorce, Tesla, IBM.Read More
Security News | VentureBeat – Read More