BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] SOPlanning 1.52.01 (Simple Online Planning Tool) - Remote Code Execution (RCE) (Authenticated)
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
US Gathers Allies to Talk AI Safety as Trump’s Vow to Undo Biden’s AI Policy Overshadows Their Work
/in General NewsTrump promised in his presidential campaign platform to “repeal Joe Biden’s dangerous Executive Order that hinders AI Innovation, and imposes Radical Leftwing ideas on the development of this technology.”
The post US Gathers Allies to Talk AI Safety as Trump’s Vow to Undo Biden’s AI Policy Overshadows Their Work appeared first on SecurityWeek.
SecurityWeek – Read More
FBI says BianLian based in Russia, moving from ransomware attacks to extortion
/in General NewsThe ransomware group has drawn scrutiny for attacks on charities like Save The Children as well as healthcare firms like Boston Children’s Health Physicians. On Tuesday, it took credit for an attack on a Canadian healthcare company.
The Record from Recorded Future News – Read More
Phobos ransomware indictment sheds light on long-running, quietly successful scheme
/in General NewsThe document sheds light on a durable cybercrime operation that has drawn serious attention from security researchers and law enforcement agencies, even though it has kept a lower profile than other ransomware gangs.
The Record from Recorded Future News – Read More
It’s Near-Unanimous: AI, ML Make the SOC Better
/in General NewsEfficiency is the name of the game for the security operations center — and 91% of cybersecurity pros say AI and ML are winning that game.
darkreading – Read More
China’s ‘Liminal Panda’ APT Attacks Telcos, Steals Phone Data
/in General NewsIn US Senate testimony, a CrowdStrike exec explained how this advanced persistent threat penetrated telcos in Asia and Africa, gathering SMS messages, unique identifiers, and other metadata along the way.
darkreading – Read More
SquareX Brings Industry’s First Browser Detection Response Solution to AISA Melbourne CyberCon 2024
/in General NewsPalo Alto, California, 20th November 2024, CyberNewsWire
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Five members of Scattered Spider cybercrime group charged for breaches, theft of $11 million
/in General NewsCourt documents say the five — who live in the U.S. and U.K. — are accused of stealing $11 million worth of cryptocurrency from at least 29 victims in addition to taking troves of corporate documents out of company systems.
The Record from Recorded Future News – Read More
US charges five accused of multi-year hacking spree targeting tech and crypto giants
/in General NewsThe five alleged hackers are accused of stealing millions of dollars in crypto, and corporate data from several victims all over the world.
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
US and UK Military Social Network “Forces Penpals” Exposes SSN, PII Data
/in General NewsForces Penpals, a social network for US and UK military personnel, exposed the sensitive data of 1.1M users,…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Alleged Ford ‘Breach’ Encompasses Auto Dealer Info
/in General NewsCybersecurity investigators found the leaked data to be information from a third party, not Ford itself, that is already accessible to the public and not sensitive in nature.
darkreading – Read More