BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- TruffleHog Explorer - A User-Friendly Web-Based Tool To Visualize And Analyze Data Extracted Using TruffleHog
- PANO - Advanced OSINT Investigation Platform Combining Graph Visualization, Timeline Analysis, And AI Assistance To Uncover Hidden Connections In Data
- Wappalyzer-Next - Python library that uses Wappalyzer extension (and its fingerprints) to detect technologies
- Telegram-Checker - A Python Tool For Checking Telegram Accounts Via Phone Numbers Or Usernames
- Torward - An Improved Version Based On The Torghost-Gn And Darktor Scripts, Designed To Enhance Anonymity On The Internet
- Instagram-Brute-Force-2024 - Instagram Brute Force 2024 Compatible With Python 3.13 / X64 Bit / Only Chrome Browser
- QuickResponseC2 - A Command & Control Server That Leverages QR Codes To Send Commands And Receive Results From Remote Systems
- Telegram-Scraper - A Powerful Python Script That Allows You To Scrape Messages And Media From Telegram Channels Using The Telethon Library
- Moukthar - Android Remote Administration Tool
- Lobo Guará - Cyber Threat Intelligence Platform
Exploit DB
- [webapps] FoxCMS 1.2.5 - Remote Code Execution (RCE)
- [webapps] Drupal 11.x-dev - Full Path Disclosure
- [webapps] Apache Commons Text 1.10.0 - Remote Code Execution
- [webapps] Hunk Companion Plugin 1.9.0 - Unauthenticated Plugin Installation
- [webapps] Tatsu 3.3.11 - Unauthenticated RCE
- [remote] Langflow 1.3.0 - Remote Code Execution (RCE)
- [webapps] UJCMS 9.6.3 - User Enumeration via IDOR
- [webapps] Inventio Lite 4 - SQL Injection
- [webapps] KiviCare Clinic & Patient Management System (EHR) 3.6.4 - Unauthenticated SQL Injection
- [hardware] ABB Cylon Aspect 3.08.02 (deployStart.php) - Unauthenticated Command Execution
Atos Confirms Talks of Cyber Sell-off to Airbus are Underway
/in General NewsAirbus is expected to offer between €1.5 to 1.8 billion (~$1.64 to 1.97 billion) for Atos’ Big Data & Security division, in line with its goal of growing its cybersecurity arm and enhancing its defense and security portfolio.
Cyware News – Latest Cyber News – Read More
Mandiant’s Account on X Hacked to Push Cryptocurrency Scam
/in General NewsThe Twitter account of cybersecurity firm Mandiant, which is owned by Google, was hacked and used to promote a cryptocurrency scam. The attacker impersonated the Phantom crypto wallet and shared a fake website offering free tokens.
Cyware News – Latest Cyber News – Read More
Cybercriminals Flood Dark Web With X (Twitter) Gold Accounts
/in General NewsVerified accounts for celebs and organizations deliver a deep vein of cybercrime riches for crooks.
darkreading – Read More
SonicWall Accelerates SASE Offerings; Acquires Proven Cloud Security Provider
/in General NewsPost Content
darkreading – Read More
Ransomware Group Claims Cyber Breach of Xerox Subsidiary
/in General NewsAfter Xerox cybersecurity personnel discovered the breach, they brought in third-party experts to investigate.
darkreading – Read More
SentinelOne to Expand Cloud Security Capabilities With Acquisition of PingSafe
/in General NewsPost Content
darkreading – Read More
iFlock Security Consulting Secures Private Funding
/in General NewsPost Content
darkreading – Read More
Getting Started With Passkeys, One Service at a Time
/in General NewsPasskeys help do away with passwords for logging into websites and cloud services. This Tech Tip outlines ways to get started.
darkreading – Read More
Is the vCISO Model Right for Your Organization?
/in General NewsMore and more organizations are working with virtual CISOs to handle security-related responsibilities. Here are tips on how to find the right fit.
darkreading – Read More
Russian Agents Hack Webcams to Guide Missile Attacks on Kyiv
/in General NewsIncident prompts Ukraine’s security service to ask webcam operators in country to stop live broadcasts.
darkreading – Read More