BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [webapps] Moodle 4.4.0 - Authenticated Remote Code Execution
- [remote] Microsoft SharePoint 2019 - NTLM Authentication
- [remote] gogs 0.13.0 - Remote Code Execution (RCE)
- [remote] Wing FTP Server 7.4.3 - Unauthenticated Remote Code Execution (RCE)
- [webapps] Sitecore 10.4 - Remote Code Execution (RCE)
- [remote] PX4 Military UAV Autopilot 1.12.3 - Denial of Service (DoS)
- [webapps] Pterodactyl Panel 1.11.11 - Remote Code Execution (RCE)
- [remote] OneTrust SDK 6.33.0 - Denial Of Service (DoS)
- [remote] freeSSHd 1.0.9 - Denial of Service (DoS)
- [remote] McAfee Agent 5.7.6 - Insecure Storage of Sensitive Information
dRPC Launches NodeHaus to Streamline Blockchain and Web3 Infrastructure
/in General NewsBlockchain infrastructure provider dRPC has announced the launch of a NodeHaus platform that enables chain foundations unprecedented control…
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
Push Security Raises $30 Million in Series B Funding
/in General NewsPush Security has raised $30 million in Series B funding to scale its browser-based identity security platform.
The post Push Security Raises $30 Million in Series B Funding appeared first on SecurityWeek.
SecurityWeek – Read More
Cyberattack hits drinking water supplier in Spanish town near Barcelona
/in General NewsThe municipal water company in the town of Mataró said it is working with the Catalonian authorities to recover and restore its infrastructure.
The Record from Recorded Future News – Read More
New SessionShark Phishing Kit Bypasses MFA to Steal Office 365 Logins
/in General NewsSessionShark phishing kit bypasses Office 365 MFA by stealing session tokens. Experts warn of real-time attacks via fake…
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
Securing Fintech Operations Through Smarter Controls and Automation
/in General NewsWith the rise of fintechs, accuracy alone isn’t enough, security and reliability are just as necessary. For fintech…
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
SecLytics Rebrands as Augur Security, Raises $7M in Seed Funding
/in General NewsAI-powered threat prevention company Augur (rebranded from SecLytics) has raised $7 million in seed funding.
The post SecLytics Rebrands as Augur Security, Raises $7M in Seed Funding appeared first on SecurityWeek.
SecurityWeek – Read More
Elusive Comet Attack: Hackers Use Zoom Remote-Control to Steal Crypto
/in General NewsHackers in the Elusive Comet campaign exploit Zoom’s remote-control feature to steal cryptocurrency, and over $100K lost in…
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
Automating Zero Trust in Healthcare: From Risk Scoring to Dynamic Policy Enforcement Without Network Redesign
/in General NewsThe Evolving Healthcare Cybersecurity Landscape
Healthcare organizations face unprecedented cybersecurity challenges in 2025. With operational technology (OT) environments increasingly targeted and the convergence of IT and medical systems creating an expanded attack surface, traditional security approaches are proving inadequate. According to recent statistics, the healthcare sector
The Hacker News – Read More
AI-Powered Polymorphic Phishing Is Changing the Threat Landscape
/in General NewsCombined with AI, polymorphic phishing emails have become highly sophisticated, creating more personalized and evasive messages that result in higher attack success rates.
The post AI-Powered Polymorphic Phishing Is Changing the Threat Landscape appeared first on SecurityWeek.
SecurityWeek – Read More
Blue Shield of California Data Breach Impacts 4.7 Million People
/in General NewsBlue Shield of California says a website misconfiguration exposed the health information of its members to Google.
The post Blue Shield of California Data Breach Impacts 4.7 Million People appeared first on SecurityWeek.
SecurityWeek – Read More