BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [webapps] Moodle 4.4.0 - Authenticated Remote Code Execution
- [remote] Microsoft SharePoint 2019 - NTLM Authentication
- [remote] gogs 0.13.0 - Remote Code Execution (RCE)
- [remote] Wing FTP Server 7.4.3 - Unauthenticated Remote Code Execution (RCE)
- [webapps] Sitecore 10.4 - Remote Code Execution (RCE)
- [remote] PX4 Military UAV Autopilot 1.12.3 - Denial of Service (DoS)
- [webapps] Pterodactyl Panel 1.11.11 - Remote Code Execution (RCE)
- [remote] OneTrust SDK 6.33.0 - Denial Of Service (DoS)
- [remote] freeSSHd 1.0.9 - Denial of Service (DoS)
- [remote] McAfee Agent 5.7.6 - Insecure Storage of Sensitive Information
Meta, Cisco put open-source LLMs at the core of next-gen SOC workflows
/in General NewsCisco’s Foundation-sec-8B LLM & Meta’s AI Defenders redefine cybersecurity with open-source AI for scalable SOCs.Read More
Security News | VentureBeat – Read More
Chat App Used by Trump Admin Suspends Operation Amid Hack
/in General NewsTM SGNL, a chat app by US-Israeli firm TeleMessage used by Trump officials, halts operations after a breach…
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
AI Domination: RSAC 2025 Social Media Roundup
/in General NewsDocumented in a series of social media posts, cybersecurity experts shared with Dark Reading their insights on RSAC 2025 throughout the week.
darkreading – Read More
Signal Clone Used by Mike Waltz Pauses Service After Reports It Got Hacked
/in General NewsThe communications app TeleMessage, which was spotted on former US national security adviser Mike Waltz’s phone, has suspended “all services” as it investigates reports of at least one breach.
Security Latest – Read More
Peru denies it was hit by ransomware attack following Rhysida claims
/in General NewsThe prolific ransomware gang claimed to have taken over the Peruvian government’s domain.
The Record from Recorded Future News – Read More
Phony Hacktivist Pleads Guilty to Disney Data Leak
/in General NewsAfter stealing sensitive data from Disney, Ryan Mitchell Kramer claimed to be part of a Russian hacktivist group protecting artists’ rights and ensuring they receive fair compensation for their work.
darkreading – Read More
Hackers launch ‘serious’ attacks against Georgia school district, New Mexico university
/in General NewsMultiple school districts and a university in New Mexico are suffering from cyberattacks wreaking havoc as the end of the school year approaches.
The Record from Recorded Future News – Read More
GlobalX, airline used for Trump deportations, gets hacked: report
/in General NewsHackers claiming to be part of the hacktivist group Anonymous claimed the data breach.
Security News | TechCrunch – Read More
Wormable AirPlay Flaws Enable Zero-Click RCE on Apple Devices via Public Wi-Fi
/in General NewsCybersecurity researchers have disclosed a series of now-patched security vulnerabilities in Apple’s AirPlay protocol that, if successfully exploited, could enable an attacker to take over susceptible devices supporting the proprietary wireless technology.
The shortcomings have been collectively codenamed AirBorne by Israeli cybersecurity company Oligo.
“These vulnerabilities can be chained by
The Hacker News – Read More
Myanmar militia leader sanctioned by US over cyber scam connections
/in General NewsThe U.S. government sanctioned the Karen National Army, a militia group, and Saw Chit Thu, its leader, for their purported connections to the cyber fraud industry in Myanmar.
The Record from Recorded Future News – Read More