BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
Former Security Engineer Sentenced to Prison for Hacking Crypto Exchanges
/in General NewsFormer security engineer Shakeeb Ahmed was sentenced to prison for hacking and defrauding cryptocurrency exchanges.
The post Former Security Engineer Sentenced to Prison for Hacking Crypto Exchanges appeared first on SecurityWeek.
SecurityWeek – Read More
The US Government Has a Microsoft Problem
/in General NewsMicrosoft has stumbled through a series of major cybersecurity failures over the past few years. Experts say the US government’s reliance on its systems means the company continues to get a free pass.
Security Latest – Read More
Ex-Security Engineer Jailed Three Years for $12.3 Million Crypto Exchange Thefts
/in General NewsA former security engineer has been sentenced to three years in prison in the U.S. for charges relating to hacking two decentralized cryptocurrency exchanges in July 2022 and stealing over $12.3 million.
Cyware News – Latest Cyber News – Read More
Chinese-Linked LightSpy iOS Spyware Targets South Asian iPhone Users
/in General NewsCybersecurity researchers have discovered a “renewed” cyber espionage campaign targeting users in South Asia with the aim of delivering an Apple iOS spyware implant called LightSpy.
“The latest iteration of LightSpy, dubbed ‘F_Warehouse,’ boasts a modular framework with extensive spying features,” the BlackBerry Threat Research and Intelligence Team said in a report published last
The Hacker News – Read More
FatalRAT Targets Cryptocurrency Users With DLL Side-loading Techniques
/in General NewsThis campaign’s strategic inclusion of a clipper module alongside FatalRAT hints at a targeted approach towards cryptocurrency users, amplifying data interception capabilities with the addition of a keylogger module.
Cyware News – Latest Cyber News – Read More
Palo Alto Networks Releases Fixes for Firewall Zero-Day as First Attribution Attempts Emerge
/in General NewsPalo Alto Networks has started releasing hotfixes for the firewall zero-day CVE-2024-3400, which some have linked to North Korea’s Lazarus.
The post Palo Alto Networks Releases Fixes for Firewall Zero-Day as First Attribution Attempts Emerge appeared first on SecurityWeek.
SecurityWeek – Read More
Palo Alto Networks Releases Urgent Fixes for Exploited PAN-OS Vulnerability
/in General NewsPalo Alto Networks has released hotfixes to address a maximum-severity security flaw impacting PAN-OS software that has come under active exploitation in the wild.
Tracked as CVE-2024-3400 (CVSS score: 10.0), the critical vulnerability is a case of command injection in the GlobalProtect feature that an unauthenticated attacker could weaponize to execute arbitrary code with root
The Hacker News – Read More
NIST Seeks Input on Cyber Risk Management Draft
/in General NewsThe public draft – titled Incident Response Recommendations and Considerations for Cybersecurity Risk Management: A CSF 2.0 Community Profile, was published by NIST on April 3. The agency is seeking public comments on the draft through May 20.
Cyware News – Latest Cyber News – Read More
Cybercriminal Campaign Spreads Infostealers, Highlighting Risks to Web3 Gaming
/in General NewsThe campaign targets Web3 gamers, exploiting their potential lack of cyber hygiene in the pursuit of profits. It represents a significant cross-platform threat, utilizing a variety of malware to compromise users’ systems.
Cyware News – Latest Cyber News – Read More
Cyberattacks Cost Financial Firms $12 Billion, Says IMF
/in General NewsFinancial services firms have been hit with $12bn in losses over the last two decades as a result of cyber attacks, according to a recently published report from the International Monetary Fund (IMF).
Cyware News – Latest Cyber News – Read More