BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [local] TP-Link VN020 F3v(T) TT_V6.2.1021) - DHCP Stack Buffer Overflow
- [webapps] WordPress Frontend Login and Registration Blocks Plugin 1.0.7 - Privilege Escalation
- [webapps] Kentico Xperience 13.0.178 - Cross Site Scripting (XSS)
- [local] RDPGuard 9.9.9 - Privilege Escalation
- [webapps] WordPress Depicter Plugin 3.6.1 - SQL Injection
- [webapps] SureTriggers OttoKit Plugin 1.0.82 - Privilege Escalation
- [local] Microsoft Windows 11 Pro 23H2 - Ancillary Function Driver for WinSock Privilege Escalation
- [local] VirtualBox 7.0.16 - Privilege Escalation
- [remote] Apache ActiveMQ 6.1.6 - Denial of Service (DOS)
- [webapps] ERPNext 14.82.1 - Account Takeover via Cross-Site Request Forgery (CSRF)
TechRepublic EXCLUSIVE: New Ransomware Attacks are Getting More Personal as Hackers ‘Apply Psychological Pressure”
/in General NewsRansomware attackers know where your kids go to school and they want you to know it, according to professional negotiators at Sygnia.
Security | TechRepublic – Read More
Nation-State Groups Abuse Microsoft Windows Shortcut Exploit
/in General NewsTrend Micro uncovered a method that nation-state threat actors are using to target victims via the Windows .Ink shortcut file extension.
darkreading – Read More
Enterprises Gain Control Over LLM Oversharing With Prompt Security’s GenAI Authorization
/in General NewsPost Content
darkreading – Read More
Infosys Settles $17.5M Class Action Lawsuit After Sprawling Third-Party Breach
/in General NewsSeveral major companies in the finance sector were impacted by the third-party breach, prompting them to notify thousands of customers of their compromised data.
darkreading – Read More
11 Nation-State Hackers Exploit Unpatched Windows Flaw Since 2017
/in General NewsMicrosoft refuses to patch serious Windows shortcut vulnerability abused in global espionage campaigns!
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – Read More
SecPod launches Saner Cloud: A Revolutionary CNAPP For Preventive Cybersecurity
/in General NewsBengaluru, India, 19th March 2025, CyberNewsWire
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – Read More
AI Cloud Adoption Is Rife With Cyber Mistakes
/in General NewsResearch finds that organizations are granting root access by default and making other big missteps, including a Jenga-like building concept, in deploying and configuring AI services in cloud deployments.
darkreading – Read More
Orion Security Raises $6 Million to Tackle Insider Threats and Data Leaks with AI-Driven DLP
/in General NewsOrion protects against data exfiltration by using AI to compare actual data flows against permitted and expected data flows.
The post Orion Security Raises $6 Million to Tackle Insider Threats and Data Leaks with AI-Driven DLP appeared first on SecurityWeek.
SecurityWeek – Read More
Analytics company Dataminr secures $85M to fund growth
/in General NewsDataminr, a data analytics company that counts NATO and OpenAI among its customers, has raised $85 million in a combination of convertible financing and credit, Dataminr announced on Wednesday. It’s chump change for Dataminr, which closed a $475 million round at a $4.1 billion valuation in 2021. But the company has seen its fair share […]
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
Stealthy Apache Tomcat Critical Exploit Bypasses Security Filters: Are You at Risk?
/in General NewsBy simply sending HTTP requests, attackers can trigger the deserialisation of malicious data in Tomcat’s session storage and gain control.
Security | TechRepublic – Read More