BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
No feed items found.
Exploit DB
- [webapps] FluxBB 1.5.11 - Stored Cross-Site Scripting (XSS)
- [webapps] JUX Real Estate 3.4.0 - SQL Injection
- [webapps] Loaded Commerce 6.6 - Client-Side Template Injection(CSTI) (AngularJS)
- [webapps] Extensive VC Addons for WPBakery page builder 1.9.0 - Remote Code Execution (RCE)
- [webapps] TranzAxis 3.2.41.10.26 - Stored Cross-Site Scripting (XSS) (Authenticated)
- [webapps] Gitea 1.24.0 - HTML Injection
- [local] VeeVPN 1.6.1 - Unquoted Service Path
- [webapps] Chamilo LMS 1.11.24 - Remote Code Execution (RCE)
Russian APT Deploys New ‘Kapeka’ Backdoor in Eastern European Attacks
/in General NewsA previously undocumented “flexible” backdoor called Kapeka has been “sporadically” observed in cyber attacks targeting Eastern Europe, including Estonia and Ukraine, since at least mid-2022.
The findings come from Finnish cybersecurity firm WithSecure, which attributed the malware to the Russia-linked advanced persistent threat (APT) group tracked as Sandworm (aka APT44 or
The Hacker News – Read More
Russia is Trying to Sabotage European Railways, Czech Minister Said
/in General NewsCzech transport minister Martin Kupka confirmed that Russia-linked threat actors conducted “thousands of attempts to weaken our systems” since the beginning of the Russian invasion of Ukraine.
Cyware News – Latest Cyber News – Read More
Ivanti Patches 27 Vulnerabilities in Avalanche MDM Product
/in General NewsIvanti releases patches for 27 vulnerabilities in the Avalanche MDM product, including critical flaws leading to command execution.
The post Ivanti Patches 27 Vulnerabilities in Avalanche MDM Product appeared first on SecurityWeek.
SecurityWeek – Read More
Access Limitless Global Content: How Residential Proxies Enable It
/in General NewsBy Uzair Amir
Residential proxies bypass geo-restrictions, unlocking global content & websites. Enjoy unrestricted browsing, enhanced privacy, and a world of opportunity for business and personal use. Explore residential proxies today!
This is a post from HackRead.com Read the original post: Access Limitless Global Content: How Residential Proxies Enable It
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Russian Sandworm Group Using Novel Backdoor to Target Eastern and Central Europe
/in General NewsThe previously unreported backdoor, dubbed ‘Kapeka’, has a high level of stealth and sophistication, designed to both serve as an early-stage toolkit for its operators, and also to provide long-term access to the victim estate.
Cyware News – Latest Cyber News – Read More
Cisco: Multiple VPN, SSH Services Targeted in Mass Brute-Force Attacks
/in General NewsCisco has observed an increase in brute-force attacks targeting web application authentication, VPNs, and SSH services.
The post Cisco: Multiple VPN, SSH Services Targeted in Mass Brute-Force Attacks appeared first on SecurityWeek.
SecurityWeek – Read More
New Bill Would Create a Governing Body for Water System Cyber Standards
/in General NewsA measure led by two House Republicans would enable the Environmental Protection Agency to certify a governing body to develop and recommend cybersecurity requirements for water treatment and wastewater systems.
Cyware News – Latest Cyber News – Read More
Why a Native-First Approach Is Key to Cloud Security
/in General NewsA native-first approach delivers better protections and a more efficient use of resources than best-of-breed solutions, benefiting cloud service providers and end-user customers alike.
darkreading – Read More
GenAI: A New Headache for SaaS Security Teams
/in General NewsThe introduction of Open AI’s ChatGPT was a defining moment for the software industry, touching off a GenAI race with its November 2022 release. SaaS vendors are now rushing to upgrade tools with enhanced productivity capabilities that are driven by generative AI.
Among a wide range of uses, GenAI tools make it easier for developers to build software, assist sales teams in mundane email writing,
The Hacker News – Read More
Chrome 124, Firefox 125 Patch High-Severity Vulnerabilities
/in General NewsChrome and Firefox security updates resolve over 35 vulnerabilities, including a dozen high-severity bugs.
The post Chrome 124, Firefox 125 Patch High-Severity Vulnerabilities appeared first on SecurityWeek.
SecurityWeek – Read More