BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [webapps] Moodle 4.4.0 - Authenticated Remote Code Execution
- [remote] Microsoft SharePoint 2019 - NTLM Authentication
- [remote] gogs 0.13.0 - Remote Code Execution (RCE)
- [remote] Wing FTP Server 7.4.3 - Unauthenticated Remote Code Execution (RCE)
- [webapps] Sitecore 10.4 - Remote Code Execution (RCE)
- [remote] PX4 Military UAV Autopilot 1.12.3 - Denial of Service (DoS)
- [webapps] Pterodactyl Panel 1.11.11 - Remote Code Execution (RCE)
- [remote] OneTrust SDK 6.33.0 - Denial Of Service (DoS)
- [remote] freeSSHd 1.0.9 - Denial of Service (DoS)
- [remote] McAfee Agent 5.7.6 - Insecure Storage of Sensitive Information
Qilin Ransomware Attack on NHS Causes Patient Death in the UK
/in General NewsA patient’s death is confirmed linked to the June 2024 ransomware attack by the Qilin ransomware gang on Synnovis, crippling London’s NHS. Learn about the disruptions and Impact.
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
FBI Warns of Scattered Spider’s Expanding Attacks on Airlines Using Social Engineering
/in General NewsThe U.S. Federal Bureau of Investigation (FBI) has revealed that it has observed the notorious cybercrime group Scattered Spider broadening its targeting footprint to strike the airline sector.
To that end, the agency said it’s actively working with aviation and industry partners to combat the activity and help victims.
“These actors rely on social engineering techniques, often impersonating
The Hacker News – Read More
ICE Rolls Facial Recognition Tools Out to Officers’ Phones
/in General NewsPlus: US feds charge alleged masterminds behind infamous forum, Scattered Spider targets airlines, and hackers open a valve at a Norwegian dam.
Security Latest – Read More
Malicious AI Models Are Behind a New Wave of Cybercrime, Cisco Talos
/in General NewsCybercriminals use malicious AI models to write malware and phishing scams Cisco Talos warns of rising threats from uncensored and custom AI tools.
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
GIFTEDCROOK Malware Evolves: From Browser Stealer to Intelligence-Gathering Tool
/in General NewsThe threat actor behind the GIFTEDCROOK malware has made significant updates to turn the malicious program from a basic browser data stealer to a potent intelligence-gathering tool.
“Recent campaigns in June 2025 demonstrate GIFTEDCROOK’s enhanced ability to exfiltrate a broad range of sensitive documents from the devices of targeted individuals, including potentially proprietary files and
The Hacker News – Read More
Facebook’s New AI Tool Asks to Upload Your Photos for Story Ideas, Sparking Privacy Concerns
/in General NewsFacebook, the social network platform owned by Meta, is asking for users to upload pictures from their phones to suggest collages, recaps, and other ideas using artificial intelligence (AI), including those that have not been directly uploaded to the service.
According to TechCrunch, which first reported the feature, users are being served a new pop-up message asking for permission to “allow
The Hacker News – Read More
Top Apple, Google VPN Apps May Help China Spy on Users
/in General NewsApple and Google espouse strong values about data privacy, but they allow programs from a Big Brother state to thrive on their app stores, researchers allege.
darkreading – Read More
Cloudflare blocks largest DDoS attack – here’s how to protect yourself
/in General NewsBut, even bigger attacks are on their way. Here’s what you can do to slow them down and hopefully stop them in their tracks.
Latest stories for ZDNET in Security – Read More
Can AI run a physical shop? Anthropic’s Claude tried and the results were gloriously, hilariously bad
/in General NewsAnthropic’s AI assistant Claude ran a vending machine business for a month, selling tungsten cubes at a loss, giving endless discounts, and experiencing an identity crisis where it claimed to wear a blazer.Read More
Security News | VentureBeat – Read More
How runtime attacks turn profitable AI into budget black holes
/in General NewsAI inference attacks drain enterprise budgets, derail regulatory compliance and destroy new AI deployment ROI.Read More
Security News | VentureBeat – Read More