BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
Exploitation Attempts Target Unpatched Flaw Affecting Many D-Link NAS Devices
/in General NewsUnpatched D-Link NAS device vulnerability CVE-2024-3273, potentially affecting many devices, is being exploited in the wild.
The post Exploitation Attempts Target Unpatched Flaw Affecting Many D-Link NAS Devices appeared first on SecurityWeek.
SecurityWeek – Read More
Malware-Initiated Vulnerability Scanning is on the Rise
/in General NewsThreat actors have been using scanning methods to pinpoint vulnerabilities in networks or systems for a very long time. Some scanning attacks originate from benign networks likely driven by malware on infected machines.
Cyware News – Latest Cyber News – Read More
TechRepublic Academy Is Offering Extra 20% Off Most Deals Through April 16
/in General NewsBy using code ENJOY20 at checkout, you will unlock an additional 20% off most deals at TechRepublic Academy. This fantastic offer is available from April 8–16.
Security | TechRepublic – Read More
Attackers Using Obfuscation Tools to Deliver Multi-Stage Malware via Invoice Phishing
/in General NewsCybersecurity researchers have discovered an intricate multi-stage attack that leverages invoice-themed phishing decoys to deliver a wide range of malware such as Venom RAT, Remcos RAT, XWorm, NanoCore RAT, and a stealer that targets crypto wallets.
The email messages come with Scalable Vector Graphics (SVG) file attachments that, when clicked, activate the infection sequence, Fortinet
The Hacker News – Read More
ScrubCrypt Deploys VenomRAT with an Arsenal of Plugins
/in General NewsCybersecurity researchers have discovered an intricate multi-stage attack that leverages invoice-themed phishing decoys to deliver a wide range of malware such as Venom RAT, Remcos RAT, XWorm, NanoCore RAT, and a stealer that targets crypto wallets.
Cyware News – Latest Cyber News – Read More
Critical Flaws Leave 92,000 D-Link NAS Devices Vulnerable to Malware Attacks
/in General NewsThreat actors are actively scanning and exploiting a pair of security flaws that are said to affect as many as 92,000 internet-exposed D-Link network-attached storage (NAS) devices.
Tracked as CVE-2024-3272 (CVSS score: 9.8) and CVE-2024-3273 (CVSS score: 7.3), the vulnerabilities impact legacy D-Link products that have reached end-of-life (EoL) status. D-Link, in
The Hacker News – Read More
Vietnamese Cybercrime Group CoralRaider Nets Financial Data
/in General NewsWith a complex attack chain and using Telegram for its command and control, CoralRaider targets victims in Asian countries — and appears to have accidentally infected itself as well.
darkreading – Read More
Software-Defined Vehicle Fleets Face a Twisty Road on Cybersecurity
/in General NewsAs manufacturers sprint to add software-defined features for vehicles, the ability for third-party maintenance and repair falls behind, leaving businesses with few choices to manage their cybersecurity.
darkreading – Read More
StrikeReady Raises $12M for AI Security Command Platform
/in General NewsPost Content
darkreading – Read More
Home Depot Hammered by Supply Chain Data Breach
/in General NewsSaaS vendor to blame for exposing employee data that was ultimately leaked on Dark Web forum, according to the home improvement retailer.
darkreading – Read More