BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [local] TP-Link VN020 F3v(T) TT_V6.2.1021) - DHCP Stack Buffer Overflow
- [webapps] WordPress Frontend Login and Registration Blocks Plugin 1.0.7 - Privilege Escalation
- [webapps] Kentico Xperience 13.0.178 - Cross Site Scripting (XSS)
- [local] RDPGuard 9.9.9 - Privilege Escalation
- [webapps] WordPress Depicter Plugin 3.6.1 - SQL Injection
- [webapps] SureTriggers OttoKit Plugin 1.0.82 - Privilege Escalation
- [local] Microsoft Windows 11 Pro 23H2 - Ancillary Function Driver for WinSock Privilege Escalation
- [local] VirtualBox 7.0.16 - Privilege Escalation
- [remote] Apache ActiveMQ 6.1.6 - Denial of Service (DOS)
- [webapps] ERPNext 14.82.1 - Account Takeover via Cross-Site Request Forgery (CSRF)
COTI and Civic Partner to Give Users Self-sovereignty of Their Digital Identity
/in General NewsBy Uzair Amir
COTI’s V2 confidentiality layer secures Civic’s Dynamic DID, empowering users with control over their data and seamless regulatory compliance.
This is a post from HackRead.com Read the original post: COTI and Civic Partner to Give Users Self-sovereignty of Their Digital Identity
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
GoMining Review: This Platform Makes Bitcoin Mining Possible Through NFTs
/in General NewsBy Uzair Amir
Curious to learn how GoMining is pioneering the democratization of crypto mining? Read on as we explore their approach, technicals, and how they ensure safety for their users.
This is a post from HackRead.com Read the original post: GoMining Review: This Platform Makes Bitcoin Mining Possible Through NFTs
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
AI fuels startup success: 86% of founders report positive impact, HubSpot finds
/in General NewsNew HubSpot report finds 86% of startup founders say AI boosts go-to-market success, helping reach prospects, personalize marketing, and redefine entrepreneurship in the machine learning age.Read More
Security News | VentureBeat – Read More
Databricks launches DBRX, challenging Big Tech in the open source AI race
/in General NewsDatabricks launches DBRX, a powerful open source AI model that outperforms rivals, challenges big tech, and sets a new standard for enterprise AI efficiency and performance.Read More
Security News | VentureBeat – Read More
Ransomware Attack on The Big Issue, a Street Newspaper Supporting the Homeless
/in General NewsThe Big Issue, a street newspaper in the United Kingdom famed for providing homeless people with a legitimate income by paying them as vendors to distribute the magazine, has confirmed being impacted by a cyber incident.
Cyware News – Latest Cyber News – Read More
Truck-to-Truck Worm Could Infect Entire US Fleet
/in General NewsVulnerabilities in common Electronic Logging Devices (ELDs) required in US commercial trucks could be present in over 14 million medium- and heavy-duty rigs, according to researchers at Colorado State University.
Cyware News – Latest Cyber News – Read More
SASE Solutions Fall Short Without Enterprise Browser Extensions, New Report Reveals
/in General NewsAs SaaS applications dominate the business landscape, organizations need optimized network speed and robust security measures. Many of them have been turning to SASE, a product category that offers cloud-based network protection while enhancing network infrastructure performance.
However, a new report: “Better Together: SASE and Enterprise Browser Extension for the SaaS-First Enterprise” (
The Hacker News – Read More
Germany Warns of 17K Vulnerable Microsoft Exchange Servers Exposed Online
/in General NewsAccording to the German Federal Office for Information Security (BSI), around 45,000 Microsoft Exchange servers in Germany have Outlook Web Access (OWA) enabled and are accessible from the Internet.
Cyware News – Latest Cyber News – Read More
Alert: New Phishing Attack Delivers Keylogger Disguised as Bank Payment Notice
/in General NewsA new phishing campaign has been observed leveraging a novel loader malware to deliver an information stealer and keylogger called Agent Tesla.
Trustwave SpiderLabs said it identified a phishing email bearing this attack chain on March 8, 2024. The message masquerades as a bank payment notification, urging the user to open an archive file attachment.
The archive (“Bank Handlowy w Warszawie
The Hacker News – Read More
Dubious NuGet Package May Portend Chinese Industrial Espionage
/in General News“SqzrFramework480” is a .NET dynamic link library (DLL) that seems to pertain to Bozhon Precision Industry Technology Co., a Chinese manufacturer of consumer electronics and various industrial technologies.
Cyware News – Latest Cyber News – Read More