BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [local] TP-Link VN020 F3v(T) TT_V6.2.1021) - DHCP Stack Buffer Overflow
- [webapps] WordPress Frontend Login and Registration Blocks Plugin 1.0.7 - Privilege Escalation
- [webapps] Kentico Xperience 13.0.178 - Cross Site Scripting (XSS)
- [local] RDPGuard 9.9.9 - Privilege Escalation
- [webapps] WordPress Depicter Plugin 3.6.1 - SQL Injection
- [webapps] SureTriggers OttoKit Plugin 1.0.82 - Privilege Escalation
- [local] Microsoft Windows 11 Pro 23H2 - Ancillary Function Driver for WinSock Privilege Escalation
- [local] VirtualBox 7.0.16 - Privilege Escalation
- [remote] Apache ActiveMQ 6.1.6 - Denial of Service (DOS)
- [webapps] ERPNext 14.82.1 - Account Takeover via Cross-Site Request Forgery (CSRF)
Cyberattack Shutters Some Operations at Japanese Lens Manufacturer
/in General NewsTokyo-based eyeglass and medical lens-maker Hoya said the attack has halted production processes in some locations as well as an ordering system for some of its products.
darkreading – Read More
How CISOs Can Make Cybersecurity a Long-Term Priority for Boards
/in General NewsCybersecurity is far more than a check-the-box exercise. To create companywide buy-in, CISOs need to secure board support, up their communication game, and offer awareness-training programs to fight social engineering and help employees apply what they’ve learned.
darkreading – Read More
New Red Ransomware Group (Red CryptoApp) Exposes Victims on Wall of Shame
/in General NewsBy Waqas
A new ransomware group, Red CryptoApp (Red Ransomware Group), is shaking things up. Unlike others, they humiliate victims by publishing their names on a “wall of shame.” Learn how Red CryptoApp targets victims, what industries are at risk, and how to protect yourself.
This is a post from HackRead.com Read the original post: New Red Ransomware Group (Red CryptoApp) Exposes Victims on Wall of Shame
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
New SEXi Ransomware Gang Targets VMware ESXi Servers
/in General NewsChilean data center and hosting provider IxMetro Powerhost has suffered a cyberattack at the hands of a new ransomware gang known as SEXi, which encrypted the company’s VMware ESXi servers and backups.
Cyware News – Latest Cyber News – Read More
Cyberattack Causes Disruptions at Omni Hotels
/in General NewsOmni Hotels & Resorts tells customers that recent disruptions have been caused by a cyberattack that forced it to shut down systems.
The post Cyberattack Causes Disruptions at Omni Hotels appeared first on SecurityWeek.
SecurityWeek – Read More
Critical Vulnerability in Progress Flowmon Allows Remote Access to Systems
/in General NewsA critical OS command injection in Progress Flowmon can be exploited to gain remote, unauthenticated access to the system.
The post Critical Vulnerability in Progress Flowmon Allows Remote Access to Systems appeared first on SecurityWeek.
SecurityWeek – Read More
Cloud Threat Detection Firm Permiso Raises $18 million
/in General NewsCloud security firm provides a detection platform able to detect and predict the likely behavior of ‘bad’ identities.
The post Cloud Threat Detection Firm Permiso Raises $18 million appeared first on SecurityWeek.
SecurityWeek – Read More
SurveyLama Data Breach Impacts 4.4 Million Users
/in General NewsData breach impacting users’ personal information prompts survey rewards platform SurveyLama to reset passwords.
The post SurveyLama Data Breach Impacts 4.4 Million Users appeared first on SecurityWeek.
SecurityWeek – Read More
Center Identity Launches Patented Passwordless Authentication for Businesses
/in General NewsBy Cyber Newswire
Portland, Oregon, April 4th, 2024, CyberNewsWire Center Identity, a pioneering cybersecurity company, is excited to unveil its patented…
This is a post from HackRead.com Read the original post: Center Identity Launches Patented Passwordless Authentication for Businesses
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
US Cancer Center Data Breach Impacting 800,000
/in General NewsCity of Hope is notifying 800,000 individuals of a data breach impacting their personal and health information.
The post US Cancer Center Data Breach Impacting 800,000 appeared first on SecurityWeek.
SecurityWeek – Read More