BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [webapps] Moodle 4.4.0 - Authenticated Remote Code Execution
- [remote] Microsoft SharePoint 2019 - NTLM Authentication
- [remote] gogs 0.13.0 - Remote Code Execution (RCE)
- [remote] Wing FTP Server 7.4.3 - Unauthenticated Remote Code Execution (RCE)
- [remote] OneTrust SDK 6.33.0 - Denial Of Service (DoS)
- [remote] PX4 Military UAV Autopilot 1.12.3 - Denial of Service (DoS)
- [webapps] Pterodactyl Panel 1.11.11 - Remote Code Execution (RCE)
- [remote] freeSSHd 1.0.9 - Denial of Service (DoS)
- [remote] McAfee Agent 5.7.6 - Insecure Storage of Sensitive Information
- [remote] Microsoft Excel 2024 Use after free - Remote Code Execution (RCE)
Security Firm Andy Frain Says 100,000 People Impacted by Ransomware Attack
/in General NewsAndy Frain was targeted by the Black Basta ransomware group in 2024 and the hackers have stolen a wide range of information.
The post Security Firm Andy Frain Says 100,000 People Impacted by Ransomware Attack appeared first on SecurityWeek.
SecurityWeek – Read More
Can Cybersecurity Keep Up In the AI Arms Race?
/in General NewsNew research shows China is quickly catching up with the US in AI innovation. Experts weigh in on what it means for cyber defenders.
darkreading – Read More
100 leading AI scientists map route to more ‘trustworthy, reliable, secure’ AI
/in General NewsThe landmark Singapore Consensus comes at a time when the giants of generative AI – such as OpenAI – are disclosing less and less to the public.
Latest stories for ZDNET in Security – Read More
Is your Microsoft account passwordless yet? Why it (probably) should be and how to do it right
/in General NewsYou can ditch your Microsoft account password completely now. But if you plan to do so, there’s a step you absolutely must not skip.
Latest stories for ZDNET in Security – Read More
Vulnerability Detection Tops Agentic AI at RSAC’s Startup Competition
/in General NewsAgentic-native startups threaten to reduce the zero-day problem to just a zero-hour issue. Of course, AI agents will accelerate offensive attacks as well.
darkreading – Read More
Google Agrees to $1.3 Billion Settlement in Texas Privacy Lawsuits
/in General NewsGoogle has agreed to a $1.375 billion settlement with Texas in lawsuits over location and private browsing tracking, and biometric data collection.
The post Google Agrees to $1.3 Billion Settlement in Texas Privacy Lawsuits appeared first on SecurityWeek.
SecurityWeek – Read More
Moldova arrests suspect in ransomware attacks targeting Dutch firms
/in General NewsA 45-year-old man arrested in Moldova is charged with a string of cybercrimes against Dutch entities in 2021.
The Record from Recorded Future News – Read More
Fears ‘hackers still in the system’ leave Co-op shelves running empty across UK
/in General NewsU.K. retailer the Co-op is still having trouble with keeping grocery shelves stocked as it continues to respond to an attempted cyberattack that forced it to shut down some systems two weeks ago.
The Record from Recorded Future News – Read More
Zero Trust in the Age of Digital Transformation: The New Cybersecurity Paradigm
/in General NewsWith the digital transformation movement sweeping the world and cyber threats evolving simultaneously to pose greater and greater…
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
Asus DriverHub Vulnerabilities Expose Users to Remote Code Execution Attacks
/in General NewsTwo vulnerabilities in ASUS’s pre-installed software DriverHub can be exploited for remote code execution.
The post Asus DriverHub Vulnerabilities Expose Users to Remote Code Execution Attacks appeared first on SecurityWeek.
SecurityWeek – Read More