BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
[wp-rss-aggregator feeds="kitploit" limit="10" pagination="off"]
Exploit DB
[wp-rss-aggregator feeds="exploit-db" limit="10" pagination="off"]
Latest news and insights on Security
New Critical GitLab Vulnerability Could Allow Arbitrary CI/CD Pipeline Execution
/in General NewsGitLab has released security updates for Community Edition (CE) and Enterprise Edition (EE) to address eight security flaws, including a critical bug that could allow running Continuous Integration and Continuous Delivery (CI/CD) pipelines on arbitrary branches.
Tracked as CVE-2024-9164, the vulnerability carries a CVSS score of 9.6 out of 10.
“An issue was discovered in GitLab EE
The Hacker News – Read More
Bohemia and Cannabia Dark Web Markets Taken Down After Joint Police Operation
/in General NewsThe Dutch police have announced the takedown of Bohemia and Cannabia, which has been described as the world’s largest and longest-running dark web market for illegal goods, drugs, and cybercrime services.
The takedown is the result of a collaborative investigation with Ireland, the United Kingdom, and the United States that began towards the end of 2022, the Politie said.
The marketplace
The Hacker News – Read More
American Water Bringing Systems Back Online After Cyberattack
/in General NewsAmerican Water is reconnecting and reactivating the systems that were taken offline earlier this week due to a cybersecurity incident.
The post American Water Bringing Systems Back Online After Cyberattack appeared first on SecurityWeek.
SecurityWeek – Read More
Critical Mozilla Firefox Zero-Day Allows Code Execution
/in General NewsThe bug is already being exploited in the wild, but Firefox has provided patches for those who may be vulnerable.
darkreading – Read More
Looking at Security Challenges Through the Lens of Different Roles
/in General NewsWhat are CISOs and security leaders prioritizing versus the security operators?
The post Looking at Security Challenges Through the Lens of Different Roles appeared first on SecurityWeek.
SecurityWeek – Read More
Fidelity Notifies 77K Customers of Data Breach
/in General NewsThe third-party actor had access for two days, in the financial services company’s second major breach of the year.
darkreading – Read More
Fidelity Data Breach Exposes Data of Over 77,000 Customers
/in General NewsAn attacker snuck in by creating two new user accounts. Fidelity assures customers their investments aren’t affected.
Security | TechRepublic – Read More
Microsoft Previews New Windows Feature to Limit Admin Privileges
/in General NewsIn the latest Windows preview, Microsoft adds a feature — Administrator Protection — designed to prevent threat actors from easily escalating privileges and restrict lateral movement.
darkreading – Read More
OpenAI disrupts 20 campaigns to misuse its tech as federal officials mull international use of AI
/in General NewsThe AI giant published a 54-page report Wednesday detailing efforts by actors from China, Iran, Russia, Israel and other countries to misuse its technology for malicious purposes.
The Record from Recorded Future News – Read More
Mozilla fixes critical Firefox bug exploited in the wild
/in General NewsMozilla has patched a serious security flaw in its Firefox web browser that the company said is being exploited by hackers.
The Record from Recorded Future News – Read More