BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
No feed items found.
Exploit DB
- [webapps] FluxBB 1.5.11 - Stored Cross-Site Scripting (XSS)
- [webapps] JUX Real Estate 3.4.0 - SQL Injection
- [webapps] Loaded Commerce 6.6 - Client-Side Template Injection(CSTI) (AngularJS)
- [webapps] Extensive VC Addons for WPBakery page builder 1.9.0 - Remote Code Execution (RCE)
- [webapps] TranzAxis 3.2.41.10.26 - Stored Cross-Site Scripting (XSS) (Authenticated)
- [webapps] Gitea 1.24.0 - HTML Injection
- [local] VeeVPN 1.6.1 - Unquoted Service Path
- [webapps] Chamilo LMS 1.11.24 - Remote Code Execution (RCE)
Researchers Stop ‘Credible Takeover Attempt’ Similar to XZ Utils Backdoor Incident
/in General NewsResearchers at the OpenJS Foundation said Monday that they “received a suspicious series of emails with similar messages, bearing different names and overlapping GitHub-associated emails.”
Cyware News – Latest Cyber News – Read More
Hive RAT Creators and $3.5M Cryptojacking Mastermind Arrested in Global Crackdown
/in General NewsTwo individuals have been arrested in Australia and the U.S. in connection with an alleged scheme to develop and distribute a remote access trojan called Hive RAT (previously Firebird).
The U.S. Justice Department (DoJ) said the malware “gave the malware purchasers control over victim computers and enabled them to access victims’ private communications, their login credentials, and
The Hacker News – Read More
CISA Warns of Critical Vulnerability in Chirp Smart Locks
/in General NewsSome smart locks controlled by Chirp Systems’ software can be remotely unlocked by strangers thanks to a critical security vulnerability. This remote exploitation is possible due to passwords and private keys being hard-coded in Chirp’s Android app.
Cyware News – Latest Cyber News – Read More
Cyber Operations Intensify in Middle East, With Israel the Main Target
/in General NewsCyberattacks tripled over the past year in Israel, making it the most targeted nation in 2023, as cyber operations become a standard part of military conflicts and global protests.
darkreading – Read More
IntelBroker Claims Space-Eyes Breach, Targeting US National Security Data
/in General NewsBy Waqas
Hacker “IntelBroker” claims to have breached Space-Eyes, a geospatial intelligence firm, exposing US national security data. Authorities investigate the claim that could impact sensitive government operations.
This is a post from HackRead.com Read the original post: IntelBroker Claims Space-Eyes Breach, Targeting US National Security Data
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Roku Mandates 2FA for Customers After Credential-Stuffing Compromise
/in General NewsRoku assures customers that no financial information was stolen and that any purchases made through user accounts have been reimbursed.
darkreading – Read More
Defense Award Launches Purdue Project to Strengthen Cyber-Physical Systems
/in General NewsPost Content
darkreading – Read More
Cisco Duo’s Multifactor Authentication Service Breached
/in General NewsA third-party telephony service provider for Cisco Duo falls prey to social engineering, and the company advises customer vigilance against subsequent phishing attacks.
darkreading – Read More
Palo Alto Network Issues Hotfixes for Zero-Day Bug in Its Firewall OS
/in General NewsA sophisticated threat actor is leveraging the bug to deploy a Python backdoor for stealing data and executing other malicious actions.
darkreading – Read More
Collaborative Scheduling: Enhancing Team Coordination With Open-Source Tools
/in General NewsBy Uzair Amir
In the rapidly evolving work environment of today, collaborative scheduling stands out as a foundational pillar for effective…
This is a post from HackRead.com Read the original post: Collaborative Scheduling: Enhancing Team Coordination With Open-Source Tools
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More