BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [webapps] Stacks Mobile App Builder 5.2.3 - Authentication Bypass via Account Takeover
- [remote] Microsoft PowerPoint 2019 - Remote Code Execution (RCE)
- [remote] ScriptCase 9.12.006 (23) - Remote Command Execution (RCE)
- [local] Sudo chroot 1.9.17 - Local Privilege Escalation
- [local] Sudo 1.9.17 Host Option - Elevation of Privilege
- [local] Microsoft Defender for Endpoint (MDE) - Elevation of Privilege
- [webapps] Discourse 3.2.x - Anonymous Cache Poisoning
- [remote] Microsoft Outlook - Remote Code Execution (RCE)
- [remote] Microsoft SharePoint 2019 - NTLM Authentication
- [remote] Wing FTP Server 7.4.3 - Unauthenticated Remote Code Execution (RCE)
Data Breach Response Provider, CyEx, Acquires Settlement Administrator, Simpluris Inc.
/in General NewsPost Content
darkreading – Read More
Deepfakes Rank As the Second Most Common Cybersecurity Incident for US Businesses
/in General NewsPost Content
darkreading – Read More
CyberArk Picks Up Machine Identity Manager Venafi For $1.54B
/in General NewsThe acquisition gives CyberArk new IoT identity and certificate lifecycle management, cryptographic code-signing, and other services to secure the enterprise cloud.
darkreading – Read More
How micro1’s AI interviewer could make tech hiring more efficient and fair
/in General NewsMicro1 launches AI-powered technical interviewer to help companies efficiently screen software engineering candidates, generating custom questions, conducting interviews, and providing assessment reports.Read More
Security News | VentureBeat – Read More
NRECA Receives $4M in DOE Funding to Boost Electric Co-op Cybersecurity Preparedness
/in General NewsPost Content
darkreading – Read More
Critical Bug Allows DoS, RCE, Data Leaks in All Major Cloud Platforms
/in General NewsAn on-by-default endpoint in ubiquitous logging service Fluent Bit contains an oversight that hackers can toy with to rattle most any cloud environment.
darkreading – Read More
Students Spot Washing Machine App Flaw That Gives Out Free Cycles
/in General NewsUCSC students say that after reporting the bug months ago they’re still able to rack up unlimited free wash loads at their local laundromat.
darkreading – Read More
ZeroRisk Cybersecurity Expands Global Presence With US Launch
/in General NewsPost Content
darkreading – Read More
Are you being tracked? What new privacy features from Apple and Google can (and can’t) tell you
/in General NewsHow does your phone know that a Bluetooth tracker is monitoring you? What should you do if you find one? We answer all your questions about the new iOS and Android Bluetooth tracking features, and more.
Latest stories for ZDNET in Security – Read More
Fluent Bit Tool Vulnerability Threatens Billions of Cloud Deployments
/in General NewsBy Deeba Ahmed
“Linguistic Lumberjack” Threatens Data Breaches (CVE-2024-4323). Patch now to shield your cloud services from information disclosure, denial-of-service, or even remote takeover.
This is a post from HackRead.com Read the original post: Fluent Bit Tool Vulnerability Threatens Billions of Cloud Deployments
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More