BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
Magento Shoplift Malware Targets Both WordPress and Magento CMS on E-Commerce Sites
/in General NewsWhile it pretends to be a Google Analytics script, this is merely a distraction from the true nature of the credit card skimming JavaScript code snippet embedded in the infected website.
Cyware News – Latest Cyber News – Read More
Google Fixed Another Chrome Zero-Day Exploited at Pwn2Own
/in General NewsThe vulnerability CVE-2024-3159 is an out-of-bounds memory access in the V8 JavaScript engine. The flaw was demonstrated by Edouard Bochin (@le_douds) and Tao Yan (@Ga1ois) of Palo Alto Networks during the Pwn2Own 2024 on March 22, 2024.
Cyware News – Latest Cyber News – Read More
Rhadamanthys Stealer Delivered in Transportation Campaign
/in General NewsThe phishing emails use a unique vehicle incident lure and, in later stages of the infection chain, spoof the Federal Bureau of Transportation in a PDF that mentions a significant fine for the incident.
Cyware News – Latest Cyber News – Read More
A Vigilante Hacker Took Down North Korea’s Internet. Now He’s Taking Off His Mask
/in General NewsAs “P4x,” Alejandro Caceres single-handedly disrupted the internet of an entire country. Then he tried to show the US military how it can—and should—adopt his methods.
Security Latest – Read More
Unveiling the Fallout: Operation Cronos’ Impact on LockBit Following Landmark Disruption
/in General NewsContrary to what the group themselves have stated, activities observed post-disruption would indicate that Operation Chronos has a significant impact on the group’s activities.
Cyware News – Latest Cyber News – Read More
Microsoft’s Security Chickens Have Come Home to Roost
/in General NewsNews analysis: SecurityWeek editor-at-large Ryan Naraine reads the CSRB report on China’s audacious Microsoft’s Exchange Online hack and isn’t at all surprised by the findings.
The post Microsoft’s Security Chickens Have Come Home to Roost appeared first on SecurityWeek.
SecurityWeek – Read More
Ivanti Rushes Patches for 4 New Flaw in Connect Secure and Policy Secure
/in General NewsIvanti has released security updates to address four security flaws impacting Connect Secure and Policy Secure Gateways that could result in code execution and denial-of-service (DoS).
The list of flaws is as follows –
CVE-2024-21894 (CVSS score: 8.2) – A heap overflow vulnerability in the IPSec component of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure allows an
The Hacker News – Read More
Singapore Sets High Bar in Cybersecurity Preparedness
/in General NewsWhile Singaporean organizations have adopted the majority of their government’s cybersecurity recommendations, they aren’t immune: More than eight in 10 experienced a cybersecurity incident over the course of the year.
darkreading – Read More
LockBit Ransomware Takedown Strikes Deep Into Brand’s Viability
/in General NewsNearly three months after Operation Cronos, it’s clear the gang is not bouncing back from the innovative law-enforcement action. RaaS operators are on notice, and businesses should pay attention.
darkreading – Read More
More Than Half of Organizations Plan to Adopt AI Solutions in Coming Year, Reports Cloud Security Alliance and Google Cloud
/in General NewsPost Content
darkreading – Read More