BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
- Uro - Declutters Url Lists For Crawling/Pentesting
- Wshlient - A Simple Tool To Interact With Web Shells And Command Injection Vulnerabilities
Exploit DB
- [remote] Apache ActiveMQ 6.1.6 - Denial of Service (DOS)
- [local] VirtualBox 7.0.16 - Privilege Escalation
- [webapps] WordPress Depicter Plugin 3.6.1 - SQL Injection
- [local] Microsoft Windows 11 Pro 23H2 - Ancillary Function Driver for WinSock Privilege Escalation
- [webapps] SureTriggers OttoKit Plugin 1.0.82 - Privilege Escalation
- [webapps] ERPNext 14.82.1 - Account Takeover via Cross-Site Request Forgery (CSRF)
- [webapps] Casdoor 1.901.0 - Cross-Site Request Forgery (CSRF)
- [webapps] Grokability Snipe-IT 8.0.4 - Insecure Direct Object Reference (IDOR)
- [local] Daikin Security Gateway 14 - Remote Password Reset
- [local] ZTE ZXV10 H201L - RCE via authentication bypass
Mexico’s ‘Timbre Stealer’ Campaign Targets Manufacturing
/in General NewsA new infostealer spreading to organizations across Mexico heralds 2024’s fresh season of tax-themed phishing attacks.
darkreading – Read More
U-Haul Reports 67K Customers Impacted by Data Breach
/in General NewsIn the notice letter sent out to affected individuals, U-Haul notes that credit card information was not accessed in the breach.
darkreading – Read More
Russia’s ‘Midnight Blizzard’ Targets Service Accounts for Initial Cloud Access
/in General NewsCISA and its counterparts in the UK and other countries this week offered new guidance on how to deal with the threat actor’s recent shift to cloud attacks.
darkreading – Read More
‘Illusive’ Iranian Hacking Group Ensnares Israeli, UAE Aerospace and Defense Firms
/in General NewsUNC1549, aka Smoke Sandstorm and Tortoiseshell, appears to be the culprit behind a cyberattack campaign customized for each targeted organization.
darkreading – Read More
Kaspersky Finds Attacks on Mobile Devices Significantly Increased in 2023
/in General NewsPost Content
darkreading – Read More
Change Healthcare Ransomware Attack: BlackCat Hackers Quickly Returned After FBI Bust
/in General NewsTwo months ago, the FBI “disrupted” the BlackCat ransomware group. They’re already back—and their latest attack is causing delays at pharmacies across the US.
Security Latest – Read More
Cybersecurity Agencies Warn Ubiquiti EdgeRouter Users of APT28’s MooBot Threat
/in General NewsIn a new joint advisory, cybersecurity and intelligence agencies from the U.S. and other countries are urging users of Ubiquiti EdgeRouter to take protective measures, weeks after a botnet comprising infected routers was felled by law enforcement as part of an operation codenamed Dying Ember.
The botnet, named MooBot, is said to have been used by a Russia-linked threat actor known as
The Hacker News – Read More
New Variant of AMOS Stealer Targets Safari Cookies and Crypto Wallets
/in General NewsBy Waqas
macOS users watch out for the new variant aiming at your crypto funds!
This is a post from HackRead.com Read the original post: New Variant of AMOS Stealer Targets Safari Cookies and Crypto Wallets
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
4 Ways Organizations Can Drive Demand for Software Security Training
/in General NewsDeveloper-driven security programs place the development team at the center of reducing vulnerabilities.
darkreading – Read More
Safe Data Sharing Practices: How to Avoid Data Leaks
/in General NewsBy Owais Sultan
The Internet offers a convenient platform for sharing data, but it also brings the risk of data leaks.…
This is a post from HackRead.com Read the original post: Safe Data Sharing Practices: How to Avoid Data Leaks
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More