BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- CentralizedFirewall - Provides A Firewall Manager API Designed To Centralize And Streamline The Management Of Firewall Configurations
- Maryam - Open-source Intelligence(OSINT) Framework
- TruffleHog Explorer - A User-Friendly Web-Based Tool To Visualize And Analyze Data Extracted Using TruffleHog
- PANO - Advanced OSINT Investigation Platform Combining Graph Visualization, Timeline Analysis, And AI Assistance To Uncover Hidden Connections In Data
- Wappalyzer-Next - Python library that uses Wappalyzer extension (and its fingerprints) to detect technologies
- Telegram-Checker - A Python Tool For Checking Telegram Accounts Via Phone Numbers Or Usernames
- Torward - An Improved Version Based On The Torghost-Gn And Darktor Scripts, Designed To Enhance Anonymity On The Internet
- Instagram-Brute-Force-2024 - Instagram Brute Force 2024 Compatible With Python 3.13 / X64 Bit / Only Chrome Browser
- QuickResponseC2 - A Command & Control Server That Leverages QR Codes To Send Commands And Receive Results From Remote Systems
- Telegram-Scraper - A Powerful Python Script That Allows You To Scrape Messages And Media From Telegram Channels Using The Telethon Library
Exploit DB
- [webapps] FoxCMS 1.2.5 - Remote Code Execution (RCE)
- [webapps] Drupal 11.x-dev - Full Path Disclosure
- [webapps] Apache Commons Text 1.10.0 - Remote Code Execution
- [webapps] Hunk Companion Plugin 1.9.0 - Unauthenticated Plugin Installation
- [webapps] Tatsu 3.3.11 - Unauthenticated RCE
- [remote] Langflow 1.3.0 - Remote Code Execution (RCE)
- [webapps] UJCMS 9.6.3 - User Enumeration via IDOR
- [webapps] Inventio Lite 4 - SQL Injection
- [webapps] KiviCare Clinic & Patient Management System (EHR) 3.6.4 - Unauthenticated SQL Injection
- [hardware] ABB Cylon Aspect 3.08.02 (deployStart.php) - Unauthenticated Command Execution
Ukrainian government, Belarusian opposition targeted in new espionage campaign
/in General NewsA suspected Belarusian state-backed hacking group is behind a cyber espionage campaign targeting opposition activists in the country, as well as Ukrainian military and government entities, according to a new report.
The Record from Recorded Future News – Read More
TechCrunch Disrupt 2025: 3 days left to save up to $1,130 on passes
/in General NewsTick-tock! The last three days to save up to $1,130 to TechCrunch Disrupt 2025 are winding down! Get your tickets today for massive savings on Disrupt 2025 individual passes and up to 30% on group tickets. These offers end February 28 at 11:59 p.m. PT, so don’t miss out on major savings of the year. […]
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
Leaked Black Basta Chat Logs Reveal $107M Ransom Earnings and Internal Power Struggles
/in General NewsMore than a year’s worth of internal chat logs from a ransomware gang known as Black Basta have been published online in a leak that provides unprecedented visibility into their tactics and internal conflicts among its members.
The Russian-language chats on the Matrix messaging platform between September 18, 2023, and September 28, 2024, were initially leaked on February 11, 2025, by an
The Hacker News – Read More
New ‘Auto-Color’ Linux Malware Targets North America, Asia
/in General NewsNew Linux malware named Auto-Color, which allows full remote access to compromised devices, targets North America and Asia.
The post New ‘Auto-Color’ Linux Malware Targets North America, Asia appeared first on SecurityWeek.
SecurityWeek – Read More
London member of ‘Com’ network convicted of making indecent images of children
/in General NewsA 21-year-old East London resident tied to a “Com” cybercrime network has been convicted of fraud and making indecent images of children, authorities said.
The Record from Recorded Future News – Read More
Anagram takes a gamified approach to employee cybersecurity training
/in General NewsDespite employers requiring their employees to complete yearly cybersecurity training courses, human-driven cybersecurity breaches still happen. The problem could even get substantially worse as generative AI increases the scale and personalization of social engineering campaigns. Anagram, formerly known as Cipher, is taking a new approach to employee cybersecurity training that the company hopes can keep […]
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
SOC 3.0 – The Evolution of the SOC and How AI is Empowering Human Talent
/in General NewsOrganizations today face relentless cyber attacks, with high-profile breaches hitting the headlines almost daily. Reflecting on a long journey in the security field, it’s clear this isn’t just a human problem—it’s a math problem. There are simply too many threats and security tasks for any SOC to manually handle in a reasonable timeframe. Yet, there is a solution. Many refer to it as SOC 3.0—an
The Hacker News – Read More
Qualcomm Extends Security Support for Android Devices to 8 Years
/in General NewsQualcomm says it’s working with Google to ensure that Android device manufacturers will be able to provide security updates for 8 years.
The post Qualcomm Extends Security Support for Android Devices to 8 Years appeared first on SecurityWeek.
SecurityWeek – Read More
OpenSSF Releases Security Baseline for Open Source Projects
/in General NewsThe Open Source Security Foundation (OpenSSF) has created a structured set of security requirements for open source projects.
The post OpenSSF Releases Security Baseline for Open Source Projects appeared first on SecurityWeek.
SecurityWeek – Read More
US Background Check Firm Data Breach Exposes 3.3M Records
/in General NewsA data breach at DISA Global Solutions, a firm providing background checks, and drugs and alcohol testing services,…
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – Read More