BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
Exploit DB
- [webapps] Reservit Hotel 2.1 - Stored Cross-Site Scripting (XSS)
- [webapps] DataEase 2.4.0 - Database Configuration Information Exposure
- [webapps] Palo Alto Networks Expedition 1.2.90.1 - Admin Account Takeover
- [webapps] Watcharr 1.43.0 - Remote Code Execution (RCE)
- [webapps] WBCE CMS 1.6.3 - Authenticated Remote Code Execution (RCE)
- [webapps] Backup and Staging by WP Time Capsule 1.22.21 - Unauthenticated Arbitrary File Upload
- [webapps] Next.js Middleware 15.2.2 - Authorization Bypass
- [webapps] IBM Security Verify Access 10.0.0 - Open Redirect during OAuth Flow
- [remote] Microchip TimeProvider 4100 Grandmaster (Data plot modules) 2.4.6 - SQL Injection
- [webapps] Royal Elementor Addons and Templates 1.3.78 - Unauthenticated Arbitrary File Upload
AT&T Launches New Managed Cybersecurity Services Business LevelBlue
/in General NewsLevelBlue, a new WillJam Ventures and AT&T joint venture, provides various managed cybersecurity services.
The post AT&T Launches New Managed Cybersecurity Services Business LevelBlue appeared first on SecurityWeek.
SecurityWeek – Read More
Hackers Leak COVID-19 Data of 820K Dominicans, Including Vaccination Info
/in General NewsBy Deeba Ahmed
A massive data leak of 820,000 Dominicans’ personal information (including COVID vaccination status) has been leaked online puting individuals at risk of identity theft, scams, and social engineering attacks.
This is a post from HackRead.com Read the original post: Hackers Leak COVID-19 Data of 820K Dominicans, Including Vaccination Info
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Krebs, Luber Added to Cyber Safety Review Board
/in General NewsThe Cyber Safety Review Board (CSRB) has added four new members, including Chris Krebs, former Director of the CISA, and David Luber, head of the NSA’s Cybersecurity Directorate.
Cyware News – Latest Cyber News – Read More
Ransomware Activity is Back on Track Despite Law Enforcement Efforts
/in General NewsAccording to Corvus Insurance, ransomware activity surged in the first quarter of 2024, marking a 21% increase over the same period in 2023, despite disruptions to major ransomware groups like LockBit and ALPHV/BlackCat.
Cyware News – Latest Cyber News – Read More
Dangerous Scammers From the Yahoo Boys Group Operate Openly on Social Media
/in General NewsThe Yahoo Boys, a group of scammers primarily based in West Africa, openly operate on various social media platforms like Facebook, WhatsApp, and Telegram, engaging in fraudulent activities that range from romance fraud to business email compromise.
Cyware News – Latest Cyber News – Read More
How VISA is using generative AI to battle account fraud attacks
/in General NewsVISA Security found that enumeration attacks most often succeed by exploiting vulnerabilities in e-commerce platforms, particularly those with inadequate rate limiting or verification processes.Read More
Security News | VentureBeat – Read More
Google Simplifies 2-Factor Authentication Setup (It’s More Important Than Ever)
/in General NewsGoogle on Monday announced that it’s simplifying the process of enabling two-factor authentication (2FA) for users with personal and Workspace accounts.
Also called, 2-Step Verification (2SV), it aims to add an extra layer of security to users’ accounts to prevent takeover attacks in case the passwords are stolen.
The new change entails adding a second step method, such as an
The Hacker News – Read More
Germany Recalls Its Ambassador in Russia for a Week in Protest Over a Hacker Attack
/in General NewsGermany recalled its ambassador to Russia for a week of consultations in Berlin following an alleged hacker attack on Chancellor Olaf Scholz’s party.
The post Germany Recalls Its Ambassador in Russia for a Week in Protest Over a Hacker Attack appeared first on SecurityWeek.
SecurityWeek – Read More
From Warnings to Action: Preparing America’s Infrastructure for Imminent Cyber Threats
/in General NewsAs cyber threats grow more sophisticated, America cannot afford complacency. The time for decisive action and enhanced cyber resilience is now.
The post From Warnings to Action: Preparing America’s Infrastructure for Imminent Cyber Threats appeared first on SecurityWeek.
SecurityWeek – Read More
US Releases International Cyberspace Strategy
/in General NewsThe US calls for international engagement towards building an open, inclusive, resilient, safe, and equitable digital space.
The post US Releases International Cyberspace Strategy appeared first on SecurityWeek.
SecurityWeek – Read More