BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
[wp-rss-aggregator feeds="kitploit" limit="10" pagination="off"]
Exploit DB
[wp-rss-aggregator feeds="exploit-db" limit="10" pagination="off"]
Latest news and insights on Security
In Other News: Volkswagen Data Leak, DoubleClickjacking, China Denies Hacking US Treasury
/in General NewsNoteworthy stories that might have slipped under the radar: location data of 800,000 electric Volkswagen cars leaked, DoubleClickjacking attack, China denies hacking US Treasury.
The post In Other News: Volkswagen Data Leak, DoubleClickjacking, China Denies Hacking US Treasury appeared first on SecurityWeek.
SecurityWeek – Read More
Exploit Code Published for Potentially Dangerous Windows LDAP Vulnerability
/in General NewsProof-of-concept (PoC) code was published for CVE-2024-49113, a denial-of-service (DoS) vulnerability in Windows LDAP.
The post Exploit Code Published for Potentially Dangerous Windows LDAP Vulnerability appeared first on SecurityWeek.
SecurityWeek – Read More
FireScam Android Malware Packs Infostealer, Spyware Capabilities
/in General NewsThe FireScam Android infostealer monitors app notifications and harvests credentials and financial data and sends it to a Firebase database.
The post FireScam Android Malware Packs Infostealer, Spyware Capabilities appeared first on SecurityWeek.
SecurityWeek – Read More
New York Hospital Says Ransomware Attack Data Breach Impacts 670,000
/in General NewsRichmond University Medical Center has been investigating a ransomware attack since May 2023 and it recently determined that it affects 670,000 people.
The post New York Hospital Says Ransomware Attack Data Breach Impacts 670,000 appeared first on SecurityWeek.
SecurityWeek – Read More
LDAPNightmare PoC Exploit Crashes LSASS and Reboots Windows Domain Controllers
/in General NewsA proof-of-concept (PoC) exploit has been released for a now-patched security flaw impacting Windows Lightweight Directory Access Protocol (LDAP) that could trigger a denial-of-service (DoS) condition.
The out-of-bounds reads vulnerability is tracked as CVE-2024-49113 (CVSS score: 7.5). It was addressed by Microsoft as part of Patch Tuesday updates for December 2024, alongside CVE-2024-49112 (
The Hacker News – Read More
TotalAV VPN vs Surfshark: Which VPN Should You Choose?
/in General NewsTotalAV combines a simple VPN with antivirus software, while Surfshark offers a standalone VPN with better features and faster speeds.
Security | TechRepublic – Read More
Critical Deadline: Update Old .NET Domains Before January 7, 2025 to Avoid Service Disruption
/in General NewsMicrosoft has announced that it’s making an “unexpected change” to the way .NET installers and archives are distributed, requiring developers to update their production and DevOps infrastructure.
“We expect that most users will not be directly affected, however, it is critical that you validate if you are affected and to watch for downtime or other kinds of breakage,” Richard Lander, a program
The Hacker News – Read More
Apple to Pay Siri Users $20 Per Device in Settlement Over Accidental Siri Privacy Violations
/in General NewsApple has agreed to pay $95 million to settle a proposed class action lawsuit that accused the iPhone maker of invading users’ privacy using its voice-activated Siri assistant.
The development was first reported by Reuters.
The settlement applies to U.S.-based individuals current or former owners or purchasers of a Siri-enabled device who had their confidential voice communications with the
The Hacker News – Read More
Cloudflare’s VPN app among half-dozen pulled from Indian app stores
/in General NewsMore than half-a-dozen VPN apps, including Cloudflare’s widely-used 1.1.1.1, have been pulled from India’s Apple App Store and Google Play Store following intervention from government authorities, TechCrunch has learned. The Indian Ministry of Home Affairs issued removal orders for the apps, according to a document reviewed by TechCrunch and a disclosure made by Google to […]
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
Apple to Pay $95 Million to Settle Lawsuit Accusing Siri of Snoopy Eavesdropping
/in General NewsApple isn’t acknowledging any wrongdoing in the settlement, which must be approved by a Judge and represents a sliver of the $705 billion in profits that Apple has pocketed since September 2014.
The post Apple to Pay $95 Million to Settle Lawsuit Accusing Siri of Snoopy Eavesdropping appeared first on SecurityWeek.
SecurityWeek – Read More