BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [local] TP-Link VN020 F3v(T) TT_V6.2.1021) - DHCP Stack Buffer Overflow
- [webapps] WordPress Frontend Login and Registration Blocks Plugin 1.0.7 - Privilege Escalation
- [webapps] Kentico Xperience 13.0.178 - Cross Site Scripting (XSS)
- [local] RDPGuard 9.9.9 - Privilege Escalation
- [webapps] WordPress Depicter Plugin 3.6.1 - SQL Injection
- [webapps] SureTriggers OttoKit Plugin 1.0.82 - Privilege Escalation
- [local] Microsoft Windows 11 Pro 23H2 - Ancillary Function Driver for WinSock Privilege Escalation
- [local] VirtualBox 7.0.16 - Privilege Escalation
- [remote] Apache ActiveMQ 6.1.6 - Denial of Service (DOS)
- [webapps] ERPNext 14.82.1 - Account Takeover via Cross-Site Request Forgery (CSRF)
How to Delete Your Data From 23andMe
/in General NewsDNA-testing company 23andMe has filed for bankruptcy, which means the future of the company’s vast trove of customer data is unknown. Here’s what that means for your genetic data.
Security Latest – Read More
Microsoft’s new AI agents aim to help security pros combat the latest threats
/in General NewsDesigned for Microsoft’s Security Copilot tool, the AI-powered agents will automate basic tasks, freeing IT and security staff to tackle more complex issues.
Latest stories for ZDNET in Security – Read More
FBI Warns of Document Converter Tools Due to Uptick in Scams
/in General NewsThe FBI’s Denver field office says the tools will convert documents while also dropping malware and scraping users’ systems for sensitive data.
darkreading – Read More
DeepSeek-V3 now runs at 20 tokens per second on Mac Studio, and that’s a nightmare for OpenAI
/in General NewsDeepSeek’s free 685B-parameter AI model runs at 20 tokens/second on Apple’s Mac Studio, outperforming Claude Sonnet while using just 200 watts, challenging OpenAI’s cloud-dependent business model.Read More
Security News | VentureBeat – Read More
China-Nexus APT ‘Weaver Ant’ Caught in Yearslong Web Shell Attack
/in General NewsThe persistent threat actor was caught using sophisticated Web shell techniques against an unnamed telecommunications company in Asia.
darkreading – Read More
US lifts sanctions on Tornado Cash, a crypto mixer linked to North Korean money laundering
/in General NewsTornado Cash was used to launder billions in stolen crypto, according to the Treasury.
Security News | TechCrunch – Read More
Hackers steal sensitive data from Pennsylvania county during ransomware attack
/in General NewsThe government of Union County in central Pennsylvania said a recent ransomware attack exposed information related to law enforcement and other government business.
The Record from Recorded Future News – Read More
AI bots scraping your data? This free tool gives those pesky crawlers the run-around
/in General NewsCloudflare’s AI Labyrinth has a message for bots: Get lost. Here’s how to toggle on the tool.
Latest stories for ZDNET in Security – Read More
New Phishing Campaign Targets macOS Users with Fake Security Alerts
/in General NewsLayerX Labs reports a sophisticated macOS phishing campaign, evading security measures. Learn how attackers adapt and steal credentials from Mac users.
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – Read More
Cyber Guardians: INE Security Champions Cybersecurity Training During National Physicians Week 2025
/in General NewsCary, NC, 24th March 2025, CyberNewsWire
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – Read More