BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [local] TP-Link VN020 F3v(T) TT_V6.2.1021) - DHCP Stack Buffer Overflow
- [webapps] WordPress Frontend Login and Registration Blocks Plugin 1.0.7 - Privilege Escalation
- [webapps] Kentico Xperience 13.0.178 - Cross Site Scripting (XSS)
- [local] RDPGuard 9.9.9 - Privilege Escalation
- [webapps] WordPress Depicter Plugin 3.6.1 - SQL Injection
- [webapps] SureTriggers OttoKit Plugin 1.0.82 - Privilege Escalation
- [local] Microsoft Windows 11 Pro 23H2 - Ancillary Function Driver for WinSock Privilege Escalation
- [local] VirtualBox 7.0.16 - Privilege Escalation
- [remote] Apache ActiveMQ 6.1.6 - Denial of Service (DOS)
- [webapps] ERPNext 14.82.1 - Account Takeover via Cross-Site Request Forgery (CSRF)
Critical mySCADA myPRO Flaws Could Let Attackers Take Over Industrial Control Systems
/in General NewsCybersecurity researchers have disclosed details of two critical flaws impacting mySCADA myPRO, a Supervisory Control and Data Acquisition (SCADA) system used in operational technology (OT) environments, that could allow malicious actors to take control of susceptible systems.
“These vulnerabilities, if exploited, could grant unauthorized access to industrial control networks, potentially
The Hacker News – Read More
CISA Warns of Active Exploitation in GitHub Action Supply Chain Compromise
/in General NewsThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a vulnerability linked to the supply chain compromise of the GitHub Action, tj-actions/changed-files, to its Known Exploited Vulnerabilities (KEV) catalog.
The high-severity flaw, tracked as CVE-2025-30066 (CVSS score: 8.6), involves the breach of the GitHub Action to inject malicious code that enables a remote
The Hacker News – Read More
Knocknoc Raises Seed Funding to Scale Its Just-In-Time Network Access Control Technology
/in General NewsSydney, Australia, 19th March 2025, CyberNewsWire
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – Read More
Nvidia’s GTC 2025 keynote: 40x AI performance leap, open-source ‘Dynamo’, and a walking Star Wars-inspired ‘Blue’ robot
/in General NewsNvidia CEO Jensen Huang unveils 40x faster Blackwell platform, Vera Rubin roadmap through 2027, open-source Dynamo software, humanoid robotics AI, and GM partnership at GTC 2025, positioning the company to counter DeepSeek’s efficiency challenge.Read More
Security News | VentureBeat – Read More
Knostic Nabs $11M to Eliminate Enterprise AI Data Leaks
/in General NewsPost Content
darkreading – Read More
Google Acquires Wiz for Record $32 Billion
/in General News$32B Wiz acquisition: Google ramps up cloud security. Following Mandiant, this deal signals major GCP defense upgrade.
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – Read More
Fujifilm Signs Strategic Collaboration Agreement With Amazon Web Services
/in General NewsPost Content
darkreading – Read More
Automox Demonstrates IT and Security Impact With Launch of Precision Analytics
/in General NewsPost Content
darkreading – Read More
Wireless Airspace Defense Firm Bastille Reveals Top Threats of 2025
/in General NewsPost Content
darkreading – Read More
AI Is Turbocharging Organized Crime, EU Police Agency Warns
/in General NewsAI and other technologies “are a catalyst for crime, and drive criminal operations’ efficiency by amplifying their speed, reach, and sophistication,” the report said.
The post AI Is Turbocharging Organized Crime, EU Police Agency Warns appeared first on SecurityWeek.
SecurityWeek – Read More