BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
[wp-rss-aggregator feeds="kitploit" limit="10" pagination="off"]
Exploit DB
[wp-rss-aggregator feeds="exploit-db" limit="10" pagination="off"]
Latest news and insights on Security
Ivanti Flaw CVE-2025-0282 Actively Exploited, Impacts Connect Secure and Policy Secure
/in General NewsIvanti is warning that a critical security flaw impacting Ivanti Connect Secure, Policy Secure, and ZTA Gateways has come under active exploitation in the wild beginning mid-December 2024.
The security vulnerability in question is CVE-2025-0282 (CVSS score: 9.0), a stack-based buffer overflow that affects Ivanti Connect Secure before version 22.7R2.5, Ivanti Policy Secure before version 22.7R1.2
The Hacker News – Read More
India Readies Overhauled National Data Privacy Rules
/in General NewsThe country awaits implementation guidelines for a framework that gives Indians greater autonomy and security over their personal data — and recognizes a right to personal privacy.
darkreading – Read More
The U.S. has a new cybersecurity safety label for smart devices
/in General NewsThe White House this week announced a new label for internet-connected devices, the U.S. Cyber Trust Mark, intended to help consumers make more-informed decisions about the cybersecurity of products they bring into their homes. To earn the U.S. Cyber Trust Mark, which is being administered by the Federal Communications Commission, companies have to test their […]
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
Casio warns employees, customers about data leak from October ransomware attack
/in General NewsIn a notice on Wednesday, Casio provided a post-mortem on an October attack, explaining that 6,456 employees, 1,931 business partners and 91 customers were impacted by the ransomware incident.
The Record from Recorded Future News – Read More
CrowdStrike Achieves FedRAMP Authorization for New Modules
/in General NewsPost Content
darkreading – Read More
Fed ‘Cyber Trust’ Label: Good Intentions That Fall Short
/in General NewsThe voluntary program is intended to boost consumer confidence in vulnerable IoT devices, but experts want to see vendors held to a higher standard.
darkreading – Read More
Palindrome Technologies Approved as Cybersecurity Label Administrator for FCC’s IoT Program
/in General NewsPost Content
darkreading – Read More
US to Launch Cyber Trust Mark to Label Secure Smart Devices
/in General NewsThe Cyber Trust Mark is designed to help consumers make more informed decisions about the cybersecurity of devices they may purchase.
Security | TechRepublic – Read More
Ivanti warns hackers are exploiting new vulnerability
/in General NewsThe company released an advisory and a corresponding blog about two bugs — CVE-2025-0282 and CVE-2025-0283 — and warned that some customers have already seen CVE-2025-0282 exploited in their environments.
The Record from Recorded Future News – Read More
Ivanti Warns of New Zero-Day Attacks Hitting Connect Secure Product
/in General NewsIvanti confirms zero-day exploitation of a remotely exploitable code execution flaw in its Connect Security product line.
The post Ivanti Warns of New Zero-Day Attacks Hitting Connect Secure Product appeared first on SecurityWeek.
SecurityWeek – Read More