BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [webapps] Moodle 4.4.0 - Authenticated Remote Code Execution
- [remote] Microsoft SharePoint 2019 - NTLM Authentication
- [remote] gogs 0.13.0 - Remote Code Execution (RCE)
- [remote] Wing FTP Server 7.4.3 - Unauthenticated Remote Code Execution (RCE)
- [webapps] Sitecore 10.4 - Remote Code Execution (RCE)
- [remote] PX4 Military UAV Autopilot 1.12.3 - Denial of Service (DoS)
- [webapps] Pterodactyl Panel 1.11.11 - Remote Code Execution (RCE)
- [remote] OneTrust SDK 6.33.0 - Denial Of Service (DoS)
- [remote] freeSSHd 1.0.9 - Denial of Service (DoS)
- [remote] McAfee Agent 5.7.6 - Insecure Storage of Sensitive Information
WhatsApp Launches Private Processing to Enable AI Features While Protecting Message Privacy
/in General NewsPopular messaging app WhatsApp on Tuesday unveiled a new technology called Private Processing to enable artificial intelligence (AI) capabilities in a privacy-preserving manner.
“Private Processing will allow users to leverage powerful optional AI features – like summarizing unread messages or editing help – while preserving WhatsApp’s core privacy promise,” the Meta-owned service said in a
The Hacker News – Read More
France blames Russian military intelligence for years of cyberattacks on local entities
/in General NewsIn a rare public attribution, the French foreign ministry said on Tuesday it “condemns in the strongest possible terms” the actions of the GRU-linked threat actor known as APT28 for attacks against local entities.
The Record from Recorded Future News – Read More
How do You Know if You’re Ready for a Red Team Partnership?
/in General NewsBefore engaging in a full-scope exercise, it’s important to assess whether your program, people and processes are truly ready.
The post How do You Know if You’re Ready for a Red Team Partnership? appeared first on SecurityWeek.
SecurityWeek – Read More
Google Wallet brings digital IDs to more states – how to add yours
/in General NewsPlus, proving your age with your phone is about to get way easier and more private.
Latest stories for ZDNET in Security – Read More
SentinelOne’s Purple AI Athena Brings Autonomous Decision-Making to the SOC
/in General NewsAthena marks a major leap in SOC automation, enabling real-time detection, triage, and remediation with minimal human oversight.
The post SentinelOne’s Purple AI Athena Brings Autonomous Decision-Making to the SOC appeared first on SecurityWeek.
SecurityWeek – Read More
SecAI Debuts at RSA 2025, Redefining Threat Investigation with AI
/in General NewsSan Francisco, United States, 29th April 2025, CyberNewsWire
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
China’s Secret Weapon? How EV Batteries Could be Weaponized to Disrupt America
/in General NewsAs Xi Jinping advances his vision for China’s dominance by 2049, cybersecurity experts warn that connected technologies—like EV batteries—may quietly serve as tools of influence, espionage, and disruption.
The post China’s Secret Weapon? How EV Batteries Could be Weaponized to Disrupt America appeared first on SecurityWeek.
SecurityWeek – Read More
Ukraine’s largest home improvement retailer disrupted by cyberattack
/in General NewsEpicentr, a home improvement chain that operates more than 70 stores in Ukraine, said it suffered a cyberattack that crippled key IT systems.
The Record from Recorded Future News – Read More
Indian court orders blocking of Proton Mail
/in General NewsThe ruling, which has yet to take effect, was ordered under India’s online blocking laws.
Security News | TechCrunch – Read More
Windows Backdoor Targets Members of Exiled Uyghur Community
/in General NewsA spear-phishing campaign sent Trojanized versions of legitimate word-processing software to members of the World Uyghur Congress as part of China’s continued cyber-espionage activity against the ethnic minority.
darkreading – Read More