BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
[wp-rss-aggregator feeds="kitploit" limit="10" pagination="off"]
Exploit DB
[wp-rss-aggregator feeds="exploit-db" limit="10" pagination="off"]
Latest news and insights on Security
India-Linked Hackers Targeting Pakistani Government, Law Enforcement
/in General NewsThe India-linked threat actor SloppyLemming has been targeting government, law enforcement, and other entities in Pakistan.
The post India-Linked Hackers Targeting Pakistani Government, Law Enforcement appeared first on SecurityWeek.
SecurityWeek – Read More
Expert Tips on How to Spot a Phishing Link
/in General NewsPhishing attacks are becoming more advanced and harder to detect, but there are still telltale signs that can help you spot them before it’s too late. See these key indicators that security experts use to identify phishing links:1. Check Suspicious URLs
Phishing URLs are often long, confusing, or filled with random characters. Attackers use these to disguise the link’s true destination
The Hacker News – Read More
Agentic AI in SOCs: A Solution to SOAR’s Unfulfilled Promises
/in General NewsSecurity Orchestration, Automation, and Response (SOAR) was introduced with the promise of revolutionizing Security Operations Centers (SOCs) through automation, reducing manual workloads and enhancing efficiency. However, despite three generations of technology and 10 years of advancements, SOAR hasn’t fully delivered on its potential, leaving SOCs still grappling with many of the same
The Hacker News – Read More
Third Recent Ivanti Vulnerability Exploited in the Wild
/in General NewsCVE-2024-7593 is the third Ivanti product vulnerability patched in recent months that has been exploited in the wild.
The post Third Recent Ivanti Vulnerability Exploited in the Wild appeared first on SecurityWeek.
SecurityWeek – Read More
Webinar Today: Shield Your Data, Secure Your Future: A Multi-Layered Approach to Operational Resilience
/in General NewsJoin the webinar to gain insights and learn actionable steps to enhance your organization’s data security and resilience.
The post Webinar Today: Shield Your Data, Secure Your Future: A Multi-Layered Approach to Operational Resilience appeared first on SecurityWeek.
SecurityWeek – Read More
ChatGPT macOS Flaw Could’ve Enabled Long-Term Spyware via Memory Function
/in General NewsA now-patched security vulnerability in OpenAI’s ChatGPT app for macOS could have made it possible for attackers to plant long-term persistent spyware into the artificial intelligence (AI) tool’s memory.
The technique, dubbed SpAIware, could be abused to facilitate “continuous data exfiltration of any information the user typed or responses received by ChatGPT, including any future chat sessions
The Hacker News – Read More
Iran Was Behind Thousands of Text Messages Calling for Revenge Over Quran Burnings, Sweden Says
/in General NewsSweden is accusing Iran of hacking SMS service and sending out thousands of text messages calling for revenge over Quran burnings.
The post Iran Was Behind Thousands of Text Messages Calling for Revenge Over Quran Burnings, Sweden Says appeared first on SecurityWeek.
SecurityWeek – Read More
Transportation Companies Hit by Cyberattacks Using Lumma Stealer and NetSupport Malware
/in General NewsTransportation and logistics companies in North America are the target of a new phishing campaign that delivers a variety of information stealers and remote access trojans (RATs).
The activity cluster, per Proofpoint, makes use of compromised legitimate email accounts belonging to transportation and shipping companies so as to inject malicious content into existing email conversations.
As many
The Hacker News – Read More
CISA Flags Critical Ivanti vTM Vulnerability Amid Active Exploitation Concerns
/in General NewsThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a critical security flaw impacting Ivanti Virtual Traffic Manager (vTM) to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation.
The vulnerability in question is CVE-2024-7593 (CVSS score: 9.8), which could be exploited by a remote unauthenticated attacker to bypass the
The Hacker News – Read More
PDiddySploit Malware Hidden in Files Claiming to Reveal Deleted Diddy Posts
/in General NewsCybercriminals are exploiting the ongoing Sean “Diddy” Combs scandal by spreading the new PDiddySploit malware hidden in infected…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More