BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
[wp-rss-aggregator feeds="kitploit" limit="10" pagination="off"]
Exploit DB
[wp-rss-aggregator feeds="exploit-db" limit="10" pagination="off"]
Latest news and insights on Security
Fortinet Confirms New Zero-Day Exploitation
/in General NewsFortinet patches critical vulnerabilities, including a zero-day that has been exploited in the wild since at least November 2024.
The post Fortinet Confirms New Zero-Day Exploitation appeared first on SecurityWeek.
SecurityWeek – Read More
Microsoft Discovers macOS Flaw CVE-2024-44243, Bypassing SIP
/in General NewsCVE-2024-44243, a critical macOS vulnerability discovered recently by Microsoft, can allow attackers to bypass Apple’s System Integrity Protection…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
ICS Patch Tuesday: Security Advisories Published by Schneider, Siemens, Phoenix Contact, CISA
/in General NewsSchneider Electric, Siemens, CISA, and Phoenix Contact have released January 2025 Patch Tuesday ICS security advisories.
The post ICS Patch Tuesday: Security Advisories Published by Schneider, Siemens, Phoenix Contact, CISA appeared first on SecurityWeek.
SecurityWeek – Read More
Wultra Secures €3M to Protect Financial Institutions from Quantum Threats
/in General NewsPrague, Czech republic, 15th January 2025, CyberNewsWire
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
FBI Deletes PlugX Malware from 4,250 Hacked Computers in Multi-Month Operation
/in General NewsThe U.S. Department of Justice (DoJ) on Tuesday disclosed that a court-authorized operation allowed the Federal Bureau of Investigation (FBI) to delete PlugX malware from over 4,250 infected computers as part of a “multi-month law enforcement operation.”
PlugX, also known as Korplug, is a remote access trojan (RAT) widely used by threat actors associated with the People’s Republic of China (PRC
The Hacker News – Read More
Critical SimpleHelp Flaws Allow File Theft, Privilege Escalation, and RCE Attacks
/in General NewsCybersecurity researchers have disclosed multiple security flaws in SimpleHelp remote access software that could lead to information disclosure, privilege escalation, and remote code execution.
Horizon3.ai researcher Naveen Sunkavally, in a technical report detailing the findings, said the “vulnerabilities are trivial to reverse and exploit.”
The list of identified flaws is as follows –
The Hacker News – Read More
3 Actively Exploited Zero-Day Flaws Patched in Microsoft’s Latest Security Update
/in General NewsMicrosoft kicked off 2025 with a new set of patches for a total of 161 security vulnerabilities across its software portfolio, including three zero-days that have been actively exploited in attacks.
Of the 161 flaws, 11 are rated Critical, and 149 are rated Important in severity. One other flaw, a non-Microsoft CVE related to a Windows Secure Boot bypass (CVE-2024-7344), has not been assigned
The Hacker News – Read More
As Tensions Mount With China, Taiwan Sees Surge in Cyberattacks
/in General NewsIn 2024, the Taiwanese government saw the daily average of attempted attacks by China double to 2.4 million, with a focus on government targets and telecommunications firms.
darkreading – Read More
Google’s Gemini AI just shattered the rules of visual processing—here’s what that means for you
/in General NewsGoogle’s Gemini AI achieves a groundbreaking milestone with simultaneous video and image processing, unlocking new possibilities for AI applications through the experimental AnyChat platform.Read More
Security News | VentureBeat – Read More
Microsoft Rings in 2025 With Record Security Update
/in General NewsCompany has issued patches for an unprecedented 159 CVEs, including eight zero-days, three of which attackers are already exploiting.
darkreading – Read More