BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [webapps] Moodle 4.4.0 - Authenticated Remote Code Execution
- [remote] Microsoft SharePoint 2019 - NTLM Authentication
- [remote] gogs 0.13.0 - Remote Code Execution (RCE)
- [remote] Wing FTP Server 7.4.3 - Unauthenticated Remote Code Execution (RCE)
- [webapps] Sitecore 10.4 - Remote Code Execution (RCE)
- [remote] PX4 Military UAV Autopilot 1.12.3 - Denial of Service (DoS)
- [webapps] Pterodactyl Panel 1.11.11 - Remote Code Execution (RCE)
- [remote] OneTrust SDK 6.33.0 - Denial Of Service (DoS)
- [remote] freeSSHd 1.0.9 - Denial of Service (DoS)
- [remote] McAfee Agent 5.7.6 - Insecure Storage of Sensitive Information
Anthropic launches Claude web search API, betting on the future of post-Google information access
/in General NewsAnthropic launches web search API for Claude as Apple considers AI search alternatives to Google, signaling a major shift in how users discover information online.Read More
Security News | VentureBeat – Read More
TikTok Fined €530 Million Over Chinese Access to EU Data
/in General NewsEuropean regulators sent an unmistakable message about messing around with GDPR-protected data. How can organizations avoid similar compliance hassles?
darkreading – Read More
Play Ransomware Group Used Windows Zero-Day
/in General NewsPreviously, Microsoft reported that Storm-2460 had also used the privilege escalation bug to deploy ransomware on organizations in several countries.
darkreading – Read More
South African Airways says cyberattack disrupted operational systems
/in General NewsThe attack temporarily disrupted services at the airline, which is investigating whether information was stolen.
The Record from Recorded Future News – Read More
The Trump Administration Sure Is Having Trouble Keeping Its Comms Private
/in General NewsIn the wake of SignalGate, a knockoff version of Signal used by a high-ranking member of the Trump Administration was hacked. Today on Uncanny Valley, we discuss the platforms used for government communications.
Security Latest – Read More
"Bring Your Own Installer" Attack Targets SentinelOne EDR
/in General NewsResearchers from Aon’s Stroz Friedberg incident response firm discovered a new attack type, known as “Bring Your Own Installer,” targeting misconfigured SentinelOne EDR installs.
darkreading – Read More
Cisco’s Quantum Bet: Linking Small Machines Into One Giant Quantum Computer
/in General NewsCisco unveils its Quantum Network Entanglement Chip and new Quantum Labs, laying the groundwork for a scalable quantum internet that connects distributed quantum computers into a unified, powerful system.
The post Cisco’s Quantum Bet: Linking Small Machines Into One Giant Quantum Computer appeared first on SecurityWeek.
SecurityWeek – Read More
CodeAnt AI Raises $2 Million for Code Quality and Application Security Platform
/in General NewsCode quality and security firm CodeAnt has secured $2 million in seed funding and it has been valued at $20 million.
The post CodeAnt AI Raises $2 Million for Code Quality and Application Security Platform appeared first on SecurityWeek.
SecurityWeek – Read More
ClickFunnels Investigates Breach After Hackers Leak Business Data
/in General NewsClickFunnels is investigating a data breach after hackers leaked detailed business data, including emails, phone numbers, and company…
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
Ox Security Bags $60M Series B to Tackle Appsec Alert Fatigue
/in General NewsOx Security has raised a total $94 million since its launch in 2021 with ambitious plans to cash in on two fast-moving trends.
The post Ox Security Bags $60M Series B to Tackle Appsec Alert Fatigue appeared first on SecurityWeek.
SecurityWeek – Read More