BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [local] TP-Link VN020 F3v(T) TT_V6.2.1021) - DHCP Stack Buffer Overflow
- [webapps] WordPress Frontend Login and Registration Blocks Plugin 1.0.7 - Privilege Escalation
- [webapps] Kentico Xperience 13.0.178 - Cross Site Scripting (XSS)
- [local] RDPGuard 9.9.9 - Privilege Escalation
- [webapps] WordPress Depicter Plugin 3.6.1 - SQL Injection
- [webapps] SureTriggers OttoKit Plugin 1.0.82 - Privilege Escalation
- [local] Microsoft Windows 11 Pro 23H2 - Ancillary Function Driver for WinSock Privilege Escalation
- [local] VirtualBox 7.0.16 - Privilege Escalation
- [remote] Apache ActiveMQ 6.1.6 - Denial of Service (DOS)
- [webapps] ERPNext 14.82.1 - Account Takeover via Cross-Site Request Forgery (CSRF)
Custom vs. Off-the-shelf Educational Software
/in General NewsEducational institutions and businesses looking to implement technology-driven learning solutions often face a key decision: should they invest…
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – Read More
5 clever ways to use Chromecast on your TV (including one for smart home enthusiasts)
/in General NewsGoogle’s trusty casting device has been around for over a decade and will eventually be replaced. Until then, you can use it for more than just streaming shows.
Latest stories for ZDNET in Security – Read More
All your Alexa recordings will go to the cloud soon, as Amazon sunsets Echo privacy
/in General NewsCome March 28, Amazon is disabling an option that allows your Alexa voice conversations to be processed locally instead of in the cloud.
Latest stories for ZDNET in Security – Read More
Hackers are exploiting Fortinet firewall bugs to plant ransomware
/in General NewsSecurity researchers say that a threat actor it calls Mora_001 has ‘close ties’ to the Russia-linked hacking group
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
RansomHub Taps FakeUpdates to Target US Government Sector
/in General NewsA ransomware activity wave using the SocGholish MaaS framework for initial access also has affected banking and consulting firms in the US, Taiwan, and Japan since the beginning of the year.
darkreading – Read More
8,000 New WordPress Vulnerabilities Reported in 2024
/in General NewsNearly 8,000 new vulnerabilities affecting the WordPress ecosystem were reported last year, nearly all in plugins and themes.
The post 8,000 New WordPress Vulnerabilities Reported in 2024 appeared first on SecurityWeek.
SecurityWeek – Read More
How ‘Open Innovation’ Can Help Solve Problems Faster, Better & Cheaper
/in General NewsCybersecurity is not just a technical challenge but also a very human one. The more humans that organizations can get involved, the more diverse perspectives and experiences that can be tapped into.
darkreading – Read More
Malicious Code Hits ‘tj-actions/changed-files’ in 23,000 GitHub Repos
/in General NewsGitHub security alert: Malicious code found in ‘tj-actions/changed-files,’ impacting 23K+ repos. Learn how to check, remove, and protect…
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – Read More
Vote for the session you want to see at TechCrunch Sessions: AI
/in General NewsWe’ve been blown away by the overwhelming response to speak at TechCrunch Sessions: AI on June 5 in Zellerbach Hall at UC Berkeley. After thorough consideration, we’ve selected six standout finalists. The power to choose who will take the stage and share their AI expertise with 1,200 AI leaders and enthusiasts is now in your […]
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
Unpatched Edimax Camera Flaw Exploited for Mirai Botnet Attacks Since Last Year
/in General NewsAn unpatched security flaw impacting the Edimax IC-7100 network camera is being exploited by threat actors to deliver Mirat botnet malware variants since at least May 2024.
The vulnerability in question is CVE-2025-1316 (CVSS v4 score: 9.3), a critical operating system command injection flaw that an attacker could exploit to achieve remote code execution on susceptible devices by means of a
The Hacker News – Read More