BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
Regional Care Data Breach Impacts 225,000 People
/in General NewsHealthcare insurance firm Regional Care has disclosed a data breach impacting more than 225,000 individuals.
The post Regional Care Data Breach Impacts 225,000 People appeared first on SecurityWeek.
SecurityWeek – Read More
CISA Issues Binding Operational Directive for Improved Cloud Security
/in General NewsCISA’s Binding Operational Directive 25-01 requires federal agencies to align cloud environments with SCuBA secure configuration baselines.
The post CISA Issues Binding Operational Directive for Improved Cloud Security appeared first on SecurityWeek.
SecurityWeek – Read More
BeyondTrust Patches Critical Vulnerability Discovered During Security Incident Probe
/in General NewsA critical vulnerability in BeyondTrust Privileged Remote Access and Remote Support could lead to arbitrary command execution.
The post BeyondTrust Patches Critical Vulnerability Discovered During Security Incident Probe appeared first on SecurityWeek.
SecurityWeek – Read More
Exploitation of Recent Critical Apache Struts 2 Flaw Begins
/in General NewsResearchers warn of malicious attacks exploiting a recently patched critical vulnerability in Apache Struts 2 leading to remote code execution (RCE).
The post Exploitation of Recent Critical Apache Struts 2 Flaw Begins appeared first on SecurityWeek.
SecurityWeek – Read More
AI Regulation Gets Serious in 2025 – Is Your Organization Ready?
/in General NewsWhile the challenges are significant, organizations have an opportunity to build scalable AI governance frameworks that ensure compliance while enabling responsible AI innovation.
The post AI Regulation Gets Serious in 2025 – Is Your Organization Ready? appeared first on SecurityWeek.
SecurityWeek – Read More
INTERPOL Pushes for “Romance Baiting” to Replace “Pig Butchering” in Scam Discourse
/in General NewsINTERPOL is calling for a linguistic shift that aims to put to an end to the term “pig butchering,” instead advocating for the use of “romance baiting” to refer to online scams where victims are duped into investing in bogus cryptocurrency schemes under the pretext of a romantic relationship.
“The term ‘pig butchering’ dehumanizes and shames victims of such frauds, deterring people from coming
The Hacker News – Read More
Hacker Leaks Cisco Data
/in General NewsIntelBroker has leaked 2.9 Gb of data stolen recently from a Cisco DevHub instance, but claims it’s only a fraction of the total.
The post Hacker Leaks Cisco Data appeared first on SecurityWeek.
SecurityWeek – Read More
Meta Fined €251 Million for 2018 Data Breach Impacting 29 Million Accounts
/in General NewsMeta Platforms, the parent company of Facebook, Instagram, WhatsApp, and Threads, has been fined €251 million (around $263 million) for a 2018 data breach that impacted millions of users in the bloc, in what’s the latest financial hit the company has taken for flouting stringent privacy laws.
The Irish Data Protection Commission (DPC) said the data breach impacted approximately 29 million
The Hacker News – Read More
Patch Alert: Critical Apache Struts Flaw Found, Exploitation Attempts Detected
/in General NewsThreat actors are attempting to exploit a recently disclosed security flaw impacting Apache Struts that could pave the way for remote code execution.
The issue, tracked as CVE-2024-53677, carries a CVSS score of 9.5 out of 10.0, indicating critical severity. The vulnerability shares similarities with another critical bug the project maintainers addressed in December 2023 (CVE-2023-50164, CVSS
The Hacker News – Read More
Thai Police Systems Under Fire From ‘Yokai’ Backdoor
/in General NewsHackers are abusing legitimate Windows utilities to target Thai law enforcement with a novel malware that is a mix of sophistication and amateurishness.
darkreading – Read More