BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] SOPlanning 1.52.01 (Simple Online Planning Tool) - Remote Code Execution (RCE) (Authenticated)
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
Phobos ransomware indictment sheds light on long-running, quietly successful scheme
/in General NewsThe document sheds light on a durable cybercrime operation that has drawn serious attention from security researchers and law enforcement agencies, even though it has kept a lower profile than other ransomware gangs.
The Record from Recorded Future News – Read More
It’s Near-Unanimous: AI, ML Make the SOC Better
/in General NewsEfficiency is the name of the game for the security operations center — and 91% of cybersecurity pros say AI and ML are winning that game.
darkreading – Read More
China’s ‘Liminal Panda’ APT Attacks Telcos, Steals Phone Data
/in General NewsIn US Senate testimony, a CrowdStrike exec explained how this advanced persistent threat penetrated telcos in Asia and Africa, gathering SMS messages, unique identifiers, and other metadata along the way.
darkreading – Read More
SquareX Brings Industry’s First Browser Detection Response Solution to AISA Melbourne CyberCon 2024
/in General NewsPalo Alto, California, 20th November 2024, CyberNewsWire
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Five members of Scattered Spider cybercrime group charged for breaches, theft of $11 million
/in General NewsCourt documents say the five — who live in the U.S. and U.K. — are accused of stealing $11 million worth of cryptocurrency from at least 29 victims in addition to taking troves of corporate documents out of company systems.
The Record from Recorded Future News – Read More
US charges five accused of multi-year hacking spree targeting tech and crypto giants
/in General NewsThe five alleged hackers are accused of stealing millions of dollars in crypto, and corporate data from several victims all over the world.
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
US and UK Military Social Network “Forces Penpals” Exposes SSN, PII Data
/in General NewsForces Penpals, a social network for US and UK military personnel, exposed the sensitive data of 1.1M users,…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Alleged Ford ‘Breach’ Encompasses Auto Dealer Info
/in General NewsCybersecurity investigators found the leaked data to be information from a third party, not Ford itself, that is already accessible to the public and not sensitive in nature.
darkreading – Read More
Two brothers indicted for operating illegal sports streaming service that netted $7 million
/in General NewsAn indictment unsealed Tuesday charged two brothers with several crimes related to their management of 247TVStream — an online subscription-based service that let users stream live sports and television shows.
The Record from Recorded Future News – Read More
Risk Intelligence Startup RIIG Raises $3 Million
/in General NewsRisk intelligence and cybersecurity solutions provider RIIG has raised $3 million in a seed funding round led by Felton Group.
The post Risk Intelligence Startup RIIG Raises $3 Million appeared first on SecurityWeek.
SecurityWeek – Read More