BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [webapps] Stacks Mobile App Builder 5.2.3 - Authentication Bypass via Account Takeover
- [remote] Microsoft PowerPoint 2019 - Remote Code Execution (RCE)
- [remote] ScriptCase 9.12.006 (23) - Remote Command Execution (RCE)
- [local] Sudo chroot 1.9.17 - Local Privilege Escalation
- [local] Sudo 1.9.17 Host Option - Elevation of Privilege
- [local] Microsoft Defender for Endpoint (MDE) - Elevation of Privilege
- [webapps] Discourse 3.2.x - Anonymous Cache Poisoning
- [remote] Microsoft Outlook - Remote Code Execution (RCE)
- [remote] Microsoft SharePoint 2019 - NTLM Authentication
- [remote] Wing FTP Server 7.4.3 - Unauthenticated Remote Code Execution (RCE)
What your tools miss at 2:13 AM: How gen AI attack chains exploit telemetry lag – Part 2
/in General NewsExplore a strategic 2025 roadmap for cybersecurity leaders to tackle GenAI, insider risks, and team burnout with actionable guidance.Read More
Security News | VentureBeat – Read More
xAI’s promised safety report is MIA
/in General NewsElon Musk’s AI company, xAI, has missed a self-imposed deadline to publish a finalized AI safety framework, as noted by watchdog group The Midas Project. xAI isn’t exactly known for its strong commitments to AI safety as it’s commonly understood. A recent report found that the company’s AI chatbot, Grok, would undress photos of women when […]
Security News | TechCrunch – Read More
CISA Adds TeleMessage Vulnerability to KEV List Following Breach
/in General NewsCISA adds TeleMessage flaw to KEV list, urges agencies to act within 3 weeks after a breach exposed…
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
Google’s Advanced Protection for Vulnerable Users Comes to Android
/in General NewsA new extra-secure mode for Android 16 will let at-risk users lock their devices down.
Security Latest – Read More
CISA Warns of TeleMessage Vuln Despite Low CVSS Score
/in General NewsThough the app claims to use end-to-end encryption, hackers have reportedly accessed archived data on the app’s servers via a new vulnerability.
darkreading – Read More
US extradites Kosovo national charged in operating illegal online marketplace
/in General NewsA 33-year-old Kosovo citizen, Liridon Masurica, has been extradited to the U.S. to face charges related to his alleged role in operating an illegal online marketplace.
The Record from Recorded Future News – Read More
Chinese-speaking hackers disrupt drone supply chains in Taiwan, researchers say
/in General NewsEarth Ammit, as the group is known, launched two waves of campaigns from 2023 to 2024, affecting a range of industries including military, satellite, heavy industry, media, technology, software services and healthcare.
The Record from Recorded Future News – Read More
Google announces new security features for Android for protection against scam and theft
/in General NewsAt the Android Show on Tuesday, ahead of Google I/O, Google announced new security and privacy features for Android. These new features include new protections for calls, screen sharing, messages, device access, and system-level permissions. With these features, Google aims to protect users from falling for a scam, keep their details secure in case a […]
Security News | TechCrunch – Read More
Your Android phone is getting a huge security upgrade for free – what’s new
/in General NewsGoogle says these new security features will help keep scam calls and texts, sketchy apps, and phone thieves at bay. Here’s how.
Latest stories for ZDNET in Security – Read More
EU launches vulnerability database to tackle cybersecurity threats
/in General NewsThe European Union launched on Tuesday its new vulnerability database to provide aggregated information regarding cybersecurity issues affecting various products and services.
The Record from Recorded Future News – Read More