BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Maryam - Open-source Intelligence(OSINT) Framework
- TruffleHog Explorer - A User-Friendly Web-Based Tool To Visualize And Analyze Data Extracted Using TruffleHog
- PANO - Advanced OSINT Investigation Platform Combining Graph Visualization, Timeline Analysis, And AI Assistance To Uncover Hidden Connections In Data
- Wappalyzer-Next - Python library that uses Wappalyzer extension (and its fingerprints) to detect technologies
- Telegram-Checker - A Python Tool For Checking Telegram Accounts Via Phone Numbers Or Usernames
- Torward - An Improved Version Based On The Torghost-Gn And Darktor Scripts, Designed To Enhance Anonymity On The Internet
- Instagram-Brute-Force-2024 - Instagram Brute Force 2024 Compatible With Python 3.13 / X64 Bit / Only Chrome Browser
- QuickResponseC2 - A Command & Control Server That Leverages QR Codes To Send Commands And Receive Results From Remote Systems
- Telegram-Scraper - A Powerful Python Script That Allows You To Scrape Messages And Media From Telegram Channels Using The Telethon Library
- Moukthar - Android Remote Administration Tool
Exploit DB
- [webapps] FoxCMS 1.2.5 - Remote Code Execution (RCE)
- [webapps] Drupal 11.x-dev - Full Path Disclosure
- [webapps] Apache Commons Text 1.10.0 - Remote Code Execution
- [webapps] Hunk Companion Plugin 1.9.0 - Unauthenticated Plugin Installation
- [webapps] Tatsu 3.3.11 - Unauthenticated RCE
- [remote] Langflow 1.3.0 - Remote Code Execution (RCE)
- [webapps] UJCMS 9.6.3 - User Enumeration via IDOR
- [webapps] Inventio Lite 4 - SQL Injection
- [webapps] KiviCare Clinic & Patient Management System (EHR) 3.6.4 - Unauthenticated SQL Injection
- [hardware] ABB Cylon Aspect 3.08.02 (deployStart.php) - Unauthenticated Command Execution
Thousands of public school workers impacted by cyberattack on retirement plan administrator
/in General NewsA December 2024 cyberattack on a prominent administrator for retirement plans has exposed the information of thousands of public school teachers and employees across the U.S.
The Record from Recorded Future News – Read More
Accidentally texting with scammers? Google’s AI is here to stop the chat cold
/in General NewsGoogle’s on-device AI is your secret weapon against scams. Here are two new ways it’s keeping you safe.
Latest stories for ZDNET in Security – Read More
Malware Infects Linux and macOS via Typosquatted Go Packages
/in General NewsSocket exposes a typosquatting campaign delivering malware to Linux and macOS systems via malicious Go packages. Discover the…
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – Read More
Armis buys Otorio for $120M to beef up cybersecurity in physical spaces
/in General NewsMore consolidation is playing out in the security industry as platform players scoop up technology to give them deeper expertise in growing business areas. On Thursday, Armis, a $4.2 billion specialist in cyber exposure management, said it would be acquiring Otorio, a specialist in securing industrial and physical environments. Terms of the deal are not […]
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
DoJ Busts Alleged Global Hacking-for-Hire Network of ‘Cyber Mercenaries’
/in General NewsTargets included the U.S. Treasury Department, journalists, and religious organisations, and the attacks intended to steal data and suppress free speech.
Security | TechRepublic – Read More
Two arrested for stealing Taylor Swift Eras Tour tickets and selling for a $600,000 profit in cybercrime scheme
/in General NewsTwo people were arrested in New York City after allegedly using backend access to StubHub’s system to steal the URLs for 900 concert tickets, most of which were for Taylor Swift’s popular Eras Tour.
The Record from Recorded Future News – Read More
CISA Cuts: A Dangerous Gamble in a Dangerous World
/in General NewsThe Cybersecurity and Infrastructure Security Agency’s role in risk management needs to expand, not shrink.
darkreading – Read More
Deepfake Videos of YouTube CEO Phish Creators
/in General NewsYouTube creators are being targeted by scammers seeking out their credentials, using deepfake tactics to lure them in with a false sense of legitimacy.
darkreading – Read More
SquareX Unveils Polymorphic Extensions that Morph Infostealers into Any Browser Extension – Password Managers, Wallets at Risk
/in General NewsPalo Alto, Singapore, 6th March 2025, CyberNewsWire
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – Read More
US Charges 12 in Chinese Hacker Network, Offers $10M Reward
/in General NewsU.S. indicts 12 in Chinese Hacker-for-Hire Network tied to cyber attacks on governments & media. DOJ offers $10M reward for info on key suspects.
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – Read More